General

  • Target

    49fca45c3f2073819aeb939c9710da3d_JaffaCakes118

  • Size

    241KB

  • Sample

    241015-zt98fs1dqp

  • MD5

    49fca45c3f2073819aeb939c9710da3d

  • SHA1

    94b0f480db716600a367a13a15c9469d624a8ef4

  • SHA256

    db69331e8f14c183a26131a4cd28db228ccb1ac3f33a3bc555666dbfacc81f15

  • SHA512

    7fde883af302a10bcf7b3d5b3f4640c1afb53e3d8adcd1b6140fc0101009f1996213cf3465e7273ba884b556b11931b83e8985ae0f8d470c7fcb79d9ffda34f1

  • SSDEEP

    6144:akeENDvTSn2SV/GuhYdViC7X57+nMrixdcEStpB1:aNEND/k/GLPX57+ncixOEi1

Malware Config

Targets

    • Target

      49fca45c3f2073819aeb939c9710da3d_JaffaCakes118

    • Size

      241KB

    • MD5

      49fca45c3f2073819aeb939c9710da3d

    • SHA1

      94b0f480db716600a367a13a15c9469d624a8ef4

    • SHA256

      db69331e8f14c183a26131a4cd28db228ccb1ac3f33a3bc555666dbfacc81f15

    • SHA512

      7fde883af302a10bcf7b3d5b3f4640c1afb53e3d8adcd1b6140fc0101009f1996213cf3465e7273ba884b556b11931b83e8985ae0f8d470c7fcb79d9ffda34f1

    • SSDEEP

      6144:akeENDvTSn2SV/GuhYdViC7X57+nMrixdcEStpB1:aNEND/k/GLPX57+ncixOEi1

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks