General

  • Target

    82b1ef2609dd57a43db9ff5b0c518646_JaffaCakes118

  • Size

    96KB

  • Sample

    241031-l6yhjavkdz

  • MD5

    82b1ef2609dd57a43db9ff5b0c518646

  • SHA1

    984da9c34ea8312ab6eb9a85572d832a5ba16f5f

  • SHA256

    2147094ccc20c2beb2cb2b3993a0b9791ba0fae836c1bd9ef42e350ff244615e

  • SHA512

    2875c6d8cce0095728cb093e16da1e66c9c902f2d6e1faf0f5cb070d775a737357cedb1396f233366144d987bd58fc846af01014ef9adb5dc5d23aac99e778c5

  • SSDEEP

    1536:yayVlFMClPXnkH9FrtXFNinL7XshDb9igm4rtNPVk4OqmoVcZ:ybVzVPkHRC7m1ZNeXoVcZ

Malware Config

Targets

    • Target

      82b1ef2609dd57a43db9ff5b0c518646_JaffaCakes118

    • Size

      96KB

    • MD5

      82b1ef2609dd57a43db9ff5b0c518646

    • SHA1

      984da9c34ea8312ab6eb9a85572d832a5ba16f5f

    • SHA256

      2147094ccc20c2beb2cb2b3993a0b9791ba0fae836c1bd9ef42e350ff244615e

    • SHA512

      2875c6d8cce0095728cb093e16da1e66c9c902f2d6e1faf0f5cb070d775a737357cedb1396f233366144d987bd58fc846af01014ef9adb5dc5d23aac99e778c5

    • SSDEEP

      1536:yayVlFMClPXnkH9FrtXFNinL7XshDb9igm4rtNPVk4OqmoVcZ:ybVzVPkHRC7m1ZNeXoVcZ

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks