General

  • Target

    4b2b0be5639ff0ef62cf649b48a00736_JaffaCakes118

  • Size

    317KB

  • Sample

    241016-dns64azcmd

  • MD5

    4b2b0be5639ff0ef62cf649b48a00736

  • SHA1

    f65c6963e5027077a28b8fc95fe1badb645db538

  • SHA256

    95ac9bd94097c351575ebb61d3ef42903daadd54bc9b858879b9c509deb00610

  • SHA512

    0f61bac88da85954c91d66fafd96e8e8222059a37ed035bea57463199aa3b13dd5b6793f8164cab0776ec07a7465df7b0f59b7273384864f556ebe03652f88ac

  • SSDEEP

    6144:GimBc61GK8LV1KkgbdulMX7lnb0SN69NhgUTdasH3FQ0Eq1:pCc61KLLKkgWo7lb0SN6nhRzVfF1

Malware Config

Targets

    • Target

      4b2b0be5639ff0ef62cf649b48a00736_JaffaCakes118

    • Size

      317KB

    • MD5

      4b2b0be5639ff0ef62cf649b48a00736

    • SHA1

      f65c6963e5027077a28b8fc95fe1badb645db538

    • SHA256

      95ac9bd94097c351575ebb61d3ef42903daadd54bc9b858879b9c509deb00610

    • SHA512

      0f61bac88da85954c91d66fafd96e8e8222059a37ed035bea57463199aa3b13dd5b6793f8164cab0776ec07a7465df7b0f59b7273384864f556ebe03652f88ac

    • SSDEEP

      6144:GimBc61GK8LV1KkgbdulMX7lnb0SN69NhgUTdasH3FQ0Eq1:pCc61KLLKkgWo7lb0SN6nhRzVfF1

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks