General

  • Target

    50759aa19e9bfde72d67010a52ab7230_JaffaCakes118

  • Size

    236KB

  • Sample

    241017-dj82rasfnm

  • MD5

    50759aa19e9bfde72d67010a52ab7230

  • SHA1

    5a641160db64892fe6a2e0f321c92517fb008ccb

  • SHA256

    164cd71152124673333690e67fc8504945347460f2f9c071853b1254e3026f1a

  • SHA512

    06ff62a13202dbe6bc7b21366d00bdf25249a53cf5403e18dff1c9c2a6c88070e4d6bbd31936fabc4a3345c03c56e81c0af515aae5e87a59ef768aff1a548824

  • SSDEEP

    6144:I03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBElfGx/hP:Ic1udnLSg03ymK2Ilm1F4a4k6F0pP

Malware Config

Targets

    • Target

      50759aa19e9bfde72d67010a52ab7230_JaffaCakes118

    • Size

      236KB

    • MD5

      50759aa19e9bfde72d67010a52ab7230

    • SHA1

      5a641160db64892fe6a2e0f321c92517fb008ccb

    • SHA256

      164cd71152124673333690e67fc8504945347460f2f9c071853b1254e3026f1a

    • SHA512

      06ff62a13202dbe6bc7b21366d00bdf25249a53cf5403e18dff1c9c2a6c88070e4d6bbd31936fabc4a3345c03c56e81c0af515aae5e87a59ef768aff1a548824

    • SSDEEP

      6144:I03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBElfGx/hP:Ic1udnLSg03ymK2Ilm1F4a4k6F0pP

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks