General

  • Target

    830a991111421675782a4781b0a11a29_JaffaCakes118

  • Size

    202KB

  • Sample

    241031-pqktaayfjq

  • MD5

    830a991111421675782a4781b0a11a29

  • SHA1

    deca12e888783c917dd418cb5c2f2013aa6ad280

  • SHA256

    7069c0cadac3aa557cdb76f0050736e2e90aaca1954c99b99870cfaac489356b

  • SHA512

    106dacb26ce351b61f3637340ee46f79d38154bfcd9c7619f65272611ab2d314da1df71e6b0fdc5f74f291d16986d7eb41b37657c0275f05ab82ecb5aa2e4168

  • SSDEEP

    6144:z0YhjwuTT396HSjGT7UZ5SPzcxt4tzFn2b:FhjfTTHBkc4pw

Malware Config

Targets

    • Target

      830a991111421675782a4781b0a11a29_JaffaCakes118

    • Size

      202KB

    • MD5

      830a991111421675782a4781b0a11a29

    • SHA1

      deca12e888783c917dd418cb5c2f2013aa6ad280

    • SHA256

      7069c0cadac3aa557cdb76f0050736e2e90aaca1954c99b99870cfaac489356b

    • SHA512

      106dacb26ce351b61f3637340ee46f79d38154bfcd9c7619f65272611ab2d314da1df71e6b0fdc5f74f291d16986d7eb41b37657c0275f05ab82ecb5aa2e4168

    • SSDEEP

      6144:z0YhjwuTT396HSjGT7UZ5SPzcxt4tzFn2b:FhjfTTHBkc4pw

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks