General

  • Target

    31a09770fea2d2ad58709b9a2f0e78c1_JaffaCakes118

  • Size

    733KB

  • Sample

    241010-ywghgsthrf

  • MD5

    31a09770fea2d2ad58709b9a2f0e78c1

  • SHA1

    52236081902e7b6de16baf141ffb518a6cba4691

  • SHA256

    931708bffa6eed76585c166a080ea6b544f32951cb5dbc2d2065088ee9ebad95

  • SHA512

    3972210025332a87df980513a3223abfd354be22be149bdaef7294b2a6d0ac2cf144120074cbb5b78ab393f0201026ec90fb46ba3b2b7f141738920d66a387de

  • SSDEEP

    12288:0wThSCGHciZYJgDCVcEBQFpC5udlV3kbxZyNccd6/:06hQHnKxBEpC56V0b3yev

Malware Config

Targets

    • Target

      31a09770fea2d2ad58709b9a2f0e78c1_JaffaCakes118

    • Size

      733KB

    • MD5

      31a09770fea2d2ad58709b9a2f0e78c1

    • SHA1

      52236081902e7b6de16baf141ffb518a6cba4691

    • SHA256

      931708bffa6eed76585c166a080ea6b544f32951cb5dbc2d2065088ee9ebad95

    • SHA512

      3972210025332a87df980513a3223abfd354be22be149bdaef7294b2a6d0ac2cf144120074cbb5b78ab393f0201026ec90fb46ba3b2b7f141738920d66a387de

    • SSDEEP

      12288:0wThSCGHciZYJgDCVcEBQFpC5udlV3kbxZyNccd6/:06hQHnKxBEpC56V0b3yev

    • CryptoLocker

      Ransomware family with multiple variants.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks