General

  • Target

    49be16c7b06a1352b19b37969dafd751_JaffaCakes118

  • Size

    228KB

  • Sample

    241015-yrczhatgqb

  • MD5

    49be16c7b06a1352b19b37969dafd751

  • SHA1

    9c748731ed90382c4eadeb493db17ebe79323cd5

  • SHA256

    c1356cd575fc2d6592d5b05422966e128fa6d8a860c0b8efde40a4a7157cab2d

  • SHA512

    24ea0e55d0fb106336b359c4026a965b3df731028c9cfba85713a073c1795fb303b6d1f7a1caa27aeed192e89726844b81fbf61a69baa49b196283c89b3110ce

  • SSDEEP

    3072:8QfRqdESOA7VLn3WVhTDURKYNOI7IZKVTT4h2UBmsWr3uAN/SB7lG1HRqmM0GYwA:HbizmVhTAgZKR4wpr3N/SC1HRqmM0GxA

Malware Config

Targets

    • Target

      49be16c7b06a1352b19b37969dafd751_JaffaCakes118

    • Size

      228KB

    • MD5

      49be16c7b06a1352b19b37969dafd751

    • SHA1

      9c748731ed90382c4eadeb493db17ebe79323cd5

    • SHA256

      c1356cd575fc2d6592d5b05422966e128fa6d8a860c0b8efde40a4a7157cab2d

    • SHA512

      24ea0e55d0fb106336b359c4026a965b3df731028c9cfba85713a073c1795fb303b6d1f7a1caa27aeed192e89726844b81fbf61a69baa49b196283c89b3110ce

    • SSDEEP

      3072:8QfRqdESOA7VLn3WVhTDURKYNOI7IZKVTT4h2UBmsWr3uAN/SB7lG1HRqmM0GYwA:HbizmVhTAgZKR4wpr3N/SC1HRqmM0GxA

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks