General

  • Target

    8277c36da0ed4692782bbed4149a32da_JaffaCakes118

  • Size

    323KB

  • Sample

    241031-kd2ttavfll

  • MD5

    8277c36da0ed4692782bbed4149a32da

  • SHA1

    dda3f52a06dd0d38663de31c710edaba0f87b4fe

  • SHA256

    f5f8c910f876c492a682e15221e65f588db2a0cbefbfe10d06c00e1b0e6258ae

  • SHA512

    06ff0576d8550922520233b868984a0e21091be28ce33c958bda96a6f52b543fe9e2e51ae4946949496c0916e353b3e86d26196b856e0cce742faaadde8646b1

  • SSDEEP

    6144:Z9XTRHTXgjaGPtXITbrxeH/+MmvpnPBRUUdNJ2Yp:Z9VTXgjaot4q+9v5BRUWJ/

Malware Config

Targets

    • Target

      8277c36da0ed4692782bbed4149a32da_JaffaCakes118

    • Size

      323KB

    • MD5

      8277c36da0ed4692782bbed4149a32da

    • SHA1

      dda3f52a06dd0d38663de31c710edaba0f87b4fe

    • SHA256

      f5f8c910f876c492a682e15221e65f588db2a0cbefbfe10d06c00e1b0e6258ae

    • SHA512

      06ff0576d8550922520233b868984a0e21091be28ce33c958bda96a6f52b543fe9e2e51ae4946949496c0916e353b3e86d26196b856e0cce742faaadde8646b1

    • SSDEEP

      6144:Z9XTRHTXgjaGPtXITbrxeH/+MmvpnPBRUUdNJ2Yp:Z9VTXgjaot4q+9v5BRUWJ/

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Deletes itself

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks