General

  • Target

    4ec169a854f69918951d762255b34367_JaffaCakes118

  • Size

    245KB

  • Sample

    241016-yskezatcpp

  • MD5

    4ec169a854f69918951d762255b34367

  • SHA1

    24637f2128480423249a45870062bd54c129e33f

  • SHA256

    e3f90339f4e11c5899075038f7dda77e7e9b6c92b4f826b6a252ab9e66119191

  • SHA512

    91ff66017a24657767f1f0bcc5a4defe6f3b9663c7e90c8295326a44cd0514f305f0db43a3ca99caba420a1f620a63c98c3fbdb320508de81f317f76143a45ee

  • SSDEEP

    6144:F/Q6nGnUVvm7An+0meqJvYUvAuxKvrOmkaWTLo/mBB+CJOqa:RGUm7A+0mlICKv9OLb+Jd

Malware Config

Targets

    • Target

      4ec169a854f69918951d762255b34367_JaffaCakes118

    • Size

      245KB

    • MD5

      4ec169a854f69918951d762255b34367

    • SHA1

      24637f2128480423249a45870062bd54c129e33f

    • SHA256

      e3f90339f4e11c5899075038f7dda77e7e9b6c92b4f826b6a252ab9e66119191

    • SHA512

      91ff66017a24657767f1f0bcc5a4defe6f3b9663c7e90c8295326a44cd0514f305f0db43a3ca99caba420a1f620a63c98c3fbdb320508de81f317f76143a45ee

    • SSDEEP

      6144:F/Q6nGnUVvm7An+0meqJvYUvAuxKvrOmkaWTLo/mBB+CJOqa:RGUm7A+0mlICKv9OLb+Jd

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks