General

  • Target

    cea619f462b2c8c3f10a1797ac219033_JaffaCakes118

  • Size

    537KB

  • Sample

    240906-e133hawdmm

  • MD5

    cea619f462b2c8c3f10a1797ac219033

  • SHA1

    fb202ad62b1e442ad9360252f5f04e3d65d70942

  • SHA256

    aab71f212e56657d6e7892e5a0c8706e9a38d779637a1ddb63d19b6b8a1b3f2c

  • SHA512

    dfc51d4c5b8457d960a24900fb6f701f39a82fc6fd19135df95357c28ea4d92517bae3b5655579a3fc181062c0cc0884d379ec8886a731f7d09824451028a942

  • SSDEEP

    12288:YlEcxo05kz84ZyNVw82dWenMsECdg4xK4r3lGGPItHrhxx:YDkoTA82EsFK4Q0It9

Malware Config

Targets

    • Target

      cea619f462b2c8c3f10a1797ac219033_JaffaCakes118

    • Size

      537KB

    • MD5

      cea619f462b2c8c3f10a1797ac219033

    • SHA1

      fb202ad62b1e442ad9360252f5f04e3d65d70942

    • SHA256

      aab71f212e56657d6e7892e5a0c8706e9a38d779637a1ddb63d19b6b8a1b3f2c

    • SHA512

      dfc51d4c5b8457d960a24900fb6f701f39a82fc6fd19135df95357c28ea4d92517bae3b5655579a3fc181062c0cc0884d379ec8886a731f7d09824451028a942

    • SSDEEP

      12288:YlEcxo05kz84ZyNVw82dWenMsECdg4xK4r3lGGPItHrhxx:YDkoTA82EsFK4Q0It9

    • Attempts to change immutable files

      Modifies inode attributes on the filesystem to allow changing of immutable files.

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

MITRE ATT&CK Enterprise v15

Tasks