General

  • Target

    4a3abd92faaeee0cbf47648b9f235140_JaffaCakes118

  • Size

    264KB

  • Sample

    241015-1z6b5azbra

  • MD5

    4a3abd92faaeee0cbf47648b9f235140

  • SHA1

    8b23873bc42746c2cdcc295dd221e07ddd27e177

  • SHA256

    ab085e99a17a68e32f9c530278cf8a997ca9b7a9a9c3b951256acc37be5f6322

  • SHA512

    940c33c3332d3d56b76fe0eab8545f801258caf58f7acaaaa6fabc1291efefc4179334390b76ab6a8a81452cf9a244d8e76b4768761769d7292ac64f35520a50

  • SSDEEP

    6144:W5O8rS69xxY3hkm1ZDLZA3M7KrD37lSCVzhhy7:HBhGmvLZA3M7KrDJVI

Malware Config

Targets

    • Target

      4a3abd92faaeee0cbf47648b9f235140_JaffaCakes118

    • Size

      264KB

    • MD5

      4a3abd92faaeee0cbf47648b9f235140

    • SHA1

      8b23873bc42746c2cdcc295dd221e07ddd27e177

    • SHA256

      ab085e99a17a68e32f9c530278cf8a997ca9b7a9a9c3b951256acc37be5f6322

    • SHA512

      940c33c3332d3d56b76fe0eab8545f801258caf58f7acaaaa6fabc1291efefc4179334390b76ab6a8a81452cf9a244d8e76b4768761769d7292ac64f35520a50

    • SSDEEP

      6144:W5O8rS69xxY3hkm1ZDLZA3M7KrD37lSCVzhhy7:HBhGmvLZA3M7KrDJVI

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks