General

  • Target

    49c734f69c200d57b1a05dfde9f75e0c_JaffaCakes118

  • Size

    535KB

  • Sample

    241015-yw5kbavarb

  • MD5

    49c734f69c200d57b1a05dfde9f75e0c

  • SHA1

    ac2bd471278604cac0e73c663df2993dc0d82f68

  • SHA256

    87a98c4d211c59ed15c5c5479ce9305a952ca00f248d50332e25a82369e472bd

  • SHA512

    a7689272ac1a02bed87f5e66d939b477aaecaa7c4fc6980a7888351db3deeda731da5b801af45c1203284290fec88ce571e3da569ceb554fa49aacade544cd3d

  • SSDEEP

    12288:V7owTH2WOVh0bBHdiHL7jbICLOKs5it034/w2wV0kzH7jg/K:VUwWnh0bBHdk7ggzGiW3aw2wV0MHD

Malware Config

Targets

    • Target

      complex.wfx

    • Size

      600KB

    • MD5

      5e9495a4a4bfe70b7c1e2bc38e1736e1

    • SHA1

      d49fd89553602437bf260ef44f0ec267b187d33f

    • SHA256

      b597e75cb8b6ce3fa97727ed085fc56b88407582145c80b9eacbfc787d2d2fb1

    • SHA512

      e064691fc9e9920f4add53770514cc1ab1060243c4411abb85082028cf36cbefd70ddbb5f34ee4cb629852d80bc7485a9379040fa71ef2d9a938d956df74125a

    • SSDEEP

      12288:vwTH2qOhnYTBH3+lLHjbcMLOKO9x0Fji6b7MP+Dd2wV0kzHr:vwWLnYTBH3SH0SzSxkX7MP+h2wV0MHr

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks