General

  • Target

    50cdd362bb2176772e20790734f08563_JaffaCakes118

  • Size

    203KB

  • Sample

    241017-fs5f2atcpf

  • MD5

    50cdd362bb2176772e20790734f08563

  • SHA1

    c1b807fec91ffa50cd0d36e816a19771c53a85f2

  • SHA256

    e419cf809928dc8ce0fd53d60d4669180b0f1f3e4917da7f3359a0c1f646486e

  • SHA512

    f686d2aa247e7ab9e31555cf64d7f949e9c441c1baec494692b31816c76d5b16f8ae97fedb0726d253476874b801928db0f5289c5ffb11d614b43264edb3efa0

  • SSDEEP

    6144:ihUFT6hioy8QKcsHGfsIiQ7boFHWip7yLhzZl+gS:qUFT6hiTiQ/oFHWiRylVlM

Malware Config

Targets

    • Target

      50cdd362bb2176772e20790734f08563_JaffaCakes118

    • Size

      203KB

    • MD5

      50cdd362bb2176772e20790734f08563

    • SHA1

      c1b807fec91ffa50cd0d36e816a19771c53a85f2

    • SHA256

      e419cf809928dc8ce0fd53d60d4669180b0f1f3e4917da7f3359a0c1f646486e

    • SHA512

      f686d2aa247e7ab9e31555cf64d7f949e9c441c1baec494692b31816c76d5b16f8ae97fedb0726d253476874b801928db0f5289c5ffb11d614b43264edb3efa0

    • SSDEEP

      6144:ihUFT6hioy8QKcsHGfsIiQ7boFHWip7yLhzZl+gS:qUFT6hiTiQ/oFHWiRylVlM

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks