General

  • Target

    4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118

  • Size

    20KB

  • Sample

    241016-3ggbdsyhmh

  • MD5

    4f9af739eacdce8f0718a9c143dda17e

  • SHA1

    e126d827664fab5880adc1acc3c2662ce28ac52b

  • SHA256

    6da1745755cd6995f1522742516f2e19349528e56e3e8db98e04f5ab6f235153

  • SHA512

    c51251f93106c0679c04f2b75e78111e2b359521fc4fdb55655c9402b332d37602256ec77cdbea3ab3f4155398183a63b33dc8e5afcd6a10a62db0645c1255fa

  • SSDEEP

    384:nFlBur9q5LyQM3Lur5tFExhk6/cV3zcVcYbPXxF360v9cUnr6P:J6uM7S5tFCk6ErYbZl6TUU

Malware Config

Targets

    • Target

      4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118

    • Size

      20KB

    • MD5

      4f9af739eacdce8f0718a9c143dda17e

    • SHA1

      e126d827664fab5880adc1acc3c2662ce28ac52b

    • SHA256

      6da1745755cd6995f1522742516f2e19349528e56e3e8db98e04f5ab6f235153

    • SHA512

      c51251f93106c0679c04f2b75e78111e2b359521fc4fdb55655c9402b332d37602256ec77cdbea3ab3f4155398183a63b33dc8e5afcd6a10a62db0645c1255fa

    • SSDEEP

      384:nFlBur9q5LyQM3Lur5tFExhk6/cV3zcVcYbPXxF360v9cUnr6P:J6uM7S5tFCk6ErYbZl6TUU

    • Program crash

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks