General

  • Target

    4e9451a9fbbcfcbc308f940ee96bbf77_JaffaCakes118

  • Size

    1.3MB

  • Sample

    241016-x1na6axdpc

  • MD5

    4e9451a9fbbcfcbc308f940ee96bbf77

  • SHA1

    9530b4d39e7b7f0bdbc320f9e8afd06f7d6e3005

  • SHA256

    5e32a1cd98665e20e1591d5cf78a1037faeee05cf9c0fdfe49e1113fba1d1434

  • SHA512

    ff7987e83e8b179eb501a3b1884981d14de71312fa17c7ffa6858fe3169dc36825c03f129efa794e1264c1e972b305f474bc83b936205fcb5428d44818ef828b

  • SSDEEP

    24576:gZWcY/lF7YtjEyZcljCGtoYbLAzsB7nx6WF8hx+Xz+qsEmx99i3wEYEpdj4ARX:gZWcaJYtjbcM6LAOYWe4wEmxviHpx4A9

Malware Config

Targets

    • Target

      4e9451a9fbbcfcbc308f940ee96bbf77_JaffaCakes118

    • Size

      1.3MB

    • MD5

      4e9451a9fbbcfcbc308f940ee96bbf77

    • SHA1

      9530b4d39e7b7f0bdbc320f9e8afd06f7d6e3005

    • SHA256

      5e32a1cd98665e20e1591d5cf78a1037faeee05cf9c0fdfe49e1113fba1d1434

    • SHA512

      ff7987e83e8b179eb501a3b1884981d14de71312fa17c7ffa6858fe3169dc36825c03f129efa794e1264c1e972b305f474bc83b936205fcb5428d44818ef828b

    • SSDEEP

      24576:gZWcY/lF7YtjEyZcljCGtoYbLAzsB7nx6WF8hx+Xz+qsEmx99i3wEYEpdj4ARX:gZWcaJYtjbcM6LAOYWe4wEmxviHpx4A9

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks