General

  • Target

    49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118

  • Size

    205KB

  • Sample

    241015-zrb8mswgqa

  • MD5

    49f795c5755ad4d5defb01db0100b1b3

  • SHA1

    437bb71856a4b56384616711d0198dc43ceaf800

  • SHA256

    41d99e1a216f9dc4aff7dc5b3dc6b36c853b8085fa8e1e209508f171155ccbb0

  • SHA512

    88862e80f22207c908abaddd2f901ce34f12d23698264fb9feb91b1bfecc80bf33ee8c8f9209a001b6c669eaa6df18c247285f1fc6b5e812e836368357053996

  • SSDEEP

    6144:QvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6bA1:QvZ1bge0LMPjpORN8IUk

Malware Config

Targets

    • Target

      49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118

    • Size

      205KB

    • MD5

      49f795c5755ad4d5defb01db0100b1b3

    • SHA1

      437bb71856a4b56384616711d0198dc43ceaf800

    • SHA256

      41d99e1a216f9dc4aff7dc5b3dc6b36c853b8085fa8e1e209508f171155ccbb0

    • SHA512

      88862e80f22207c908abaddd2f901ce34f12d23698264fb9feb91b1bfecc80bf33ee8c8f9209a001b6c669eaa6df18c247285f1fc6b5e812e836368357053996

    • SSDEEP

      6144:QvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6bA1:QvZ1bge0LMPjpORN8IUk

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks