General

  • Target

    4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118

  • Size

    20KB

  • Sample

    241016-g9vhtsxbrc

  • MD5

    4bc30b1f4eba500f16b1f9d5143f21f1

  • SHA1

    065dde7f37d919288397ccb7ca91a2994b2a08d5

  • SHA256

    ce1b4d2010fb7b334abb404f3070d489b5679bb2b60461c7ef46b53c74122440

  • SHA512

    a08fc7b810cae1e04788f8f075dc5352a5f60694a8350581c07128e2d48101d74eeb76fbd130e7c633d26ad137f1067cc4bed7c3f2851d8e47939ce0f269eb5e

  • SSDEEP

    384:rwzX3qOAdlbeyc8YBoG+WOzKvMv+Oe60bKDCI9QxZPuY:sD+dlbeyuojWkLe6XCI9eB

Malware Config

Targets

    • Target

      4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118

    • Size

      20KB

    • MD5

      4bc30b1f4eba500f16b1f9d5143f21f1

    • SHA1

      065dde7f37d919288397ccb7ca91a2994b2a08d5

    • SHA256

      ce1b4d2010fb7b334abb404f3070d489b5679bb2b60461c7ef46b53c74122440

    • SHA512

      a08fc7b810cae1e04788f8f075dc5352a5f60694a8350581c07128e2d48101d74eeb76fbd130e7c633d26ad137f1067cc4bed7c3f2851d8e47939ce0f269eb5e

    • SSDEEP

      384:rwzX3qOAdlbeyc8YBoG+WOzKvMv+Oe60bKDCI9QxZPuY:sD+dlbeyuojWkLe6XCI9eB

    • Program crash

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks