General

  • Target

    4f4895f86b7a1c708892711e46132e3d_JaffaCakes118

  • Size

    600KB

  • Sample

    241016-11nhpsvhrg

  • MD5

    4f4895f86b7a1c708892711e46132e3d

  • SHA1

    62a7e6ffd1478d7363105923ef6b99d9a65a5c66

  • SHA256

    c5e685dd65228c0237e01b5467333f08b7de33ee15b320b6b21f687b6c8c564a

  • SHA512

    55f70b90ebc72df90007c8db3c8033f484a6ff5842be4d3ba2973ffbaddce33fc1d22adb965d424a0887fe257cac7cdec4279f28a757f208b47c711ad714941f

  • SSDEEP

    12288:k7l4s3shTJBJbI3HfaiDX29J5FB9i727cgWjaGJkAuR7VUSFNu:kGs3qTZbIXiiX2H5XS27c7ZkvBFNu

Malware Config

Targets

    • Target

      4f4895f86b7a1c708892711e46132e3d_JaffaCakes118

    • Size

      600KB

    • MD5

      4f4895f86b7a1c708892711e46132e3d

    • SHA1

      62a7e6ffd1478d7363105923ef6b99d9a65a5c66

    • SHA256

      c5e685dd65228c0237e01b5467333f08b7de33ee15b320b6b21f687b6c8c564a

    • SHA512

      55f70b90ebc72df90007c8db3c8033f484a6ff5842be4d3ba2973ffbaddce33fc1d22adb965d424a0887fe257cac7cdec4279f28a757f208b47c711ad714941f

    • SSDEEP

      12288:k7l4s3shTJBJbI3HfaiDX29J5FB9i727cgWjaGJkAuR7VUSFNu:kGs3qTZbIXiiX2H5XS27c7ZkvBFNu

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks