General

  • Target

    4bd1967fd60ae1534d690584fbedf6fb_JaffaCakes118

  • Size

    241KB

  • Sample

    241016-hn3sraxhkb

  • MD5

    4bd1967fd60ae1534d690584fbedf6fb

  • SHA1

    84c5152648ad02625a166971834c7a9808c41462

  • SHA256

    b901dc6b2a39fbe185e1478e10bcb171b3fea36a6eda0f600d98f6f036b71bbe

  • SHA512

    1eec0042b03d2b4f81dc202df25dac3b78093586d3abeb0d8d42dd10b5db928f9b6861c48db357ea8b5dbef9ad4954d2bbe0aa8b0107eb8ba8b5a9877c5bfaf4

  • SSDEEP

    6144:WkeENDvTSn2SV/GuhYdViC7X57+nMYaBkxdvMV68b:WNEND/k/GLPX57+nZaBMWb

Malware Config

Targets

    • Target

      4bd1967fd60ae1534d690584fbedf6fb_JaffaCakes118

    • Size

      241KB

    • MD5

      4bd1967fd60ae1534d690584fbedf6fb

    • SHA1

      84c5152648ad02625a166971834c7a9808c41462

    • SHA256

      b901dc6b2a39fbe185e1478e10bcb171b3fea36a6eda0f600d98f6f036b71bbe

    • SHA512

      1eec0042b03d2b4f81dc202df25dac3b78093586d3abeb0d8d42dd10b5db928f9b6861c48db357ea8b5dbef9ad4954d2bbe0aa8b0107eb8ba8b5a9877c5bfaf4

    • SSDEEP

      6144:WkeENDvTSn2SV/GuhYdViC7X57+nMYaBkxdvMV68b:WNEND/k/GLPX57+nZaBMWb

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks