General

  • Target

    50ab6564f5345f9eb817f9bfc78daee1_JaffaCakes118

  • Size

    322KB

  • Sample

    241017-exaa1ssamc

  • MD5

    50ab6564f5345f9eb817f9bfc78daee1

  • SHA1

    19bda1b7780e718ef164681d125cd542e966eec7

  • SHA256

    1efb495f1ce70abdb158e5c4dd26ef4d38a17972ba8d7a19ee8d97c099e458bb

  • SHA512

    13bdb920d59a983ed5d6e59feac56452d6b82e2c971835082b9a4257ab88668ace546b23a9d8e15ff227ff440411d1a1430150da429da0fe0856d507c3b63776

  • SSDEEP

    6144:vpfPNVW9/xCYdLGNLGmyD/fTzr+eUve5gyNiVQKN8Q2ZGStw:Fl49/xCY0G1fTzWve5lEyKWvw

Malware Config

Targets

    • Target

      50ab6564f5345f9eb817f9bfc78daee1_JaffaCakes118

    • Size

      322KB

    • MD5

      50ab6564f5345f9eb817f9bfc78daee1

    • SHA1

      19bda1b7780e718ef164681d125cd542e966eec7

    • SHA256

      1efb495f1ce70abdb158e5c4dd26ef4d38a17972ba8d7a19ee8d97c099e458bb

    • SHA512

      13bdb920d59a983ed5d6e59feac56452d6b82e2c971835082b9a4257ab88668ace546b23a9d8e15ff227ff440411d1a1430150da429da0fe0856d507c3b63776

    • SSDEEP

      6144:vpfPNVW9/xCYdLGNLGmyD/fTzr+eUve5gyNiVQKN8Q2ZGStw:Fl49/xCY0G1fTzWve5lEyKWvw

    • Adds Run key to start application

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks