General

  • Target

    b7f9b95d14be0b5de1a6494a73977384_JaffaCakes118

  • Size

    250KB

  • Sample

    241202-lfzb5svnck

  • MD5

    b7f9b95d14be0b5de1a6494a73977384

  • SHA1

    741f5b89862fd812d6cbf5c6680cbc2940674a91

  • SHA256

    abffdaabb90f1ff3e06728898385c3a3e143f9b2a34d7e5afb3e5c286029df27

  • SHA512

    9a51dd77b63828a60ab4ce343420c17367ea26e7dac4a4c5a389a92df125fd02a7ffde68e5efc66a32a807c1a4d264077ca1bba8020bf50f4ceee5176379ea84

  • SSDEEP

    6144:HQppap/3X9lLbBwgyaVVi6C7MtVZn3PT3zKST5Oakp7jgJ:HQs/NlLbNdiz7MB3PnKSt1kp7j0

Malware Config

Targets

    • Target

      b7f9b95d14be0b5de1a6494a73977384_JaffaCakes118

    • Size

      250KB

    • MD5

      b7f9b95d14be0b5de1a6494a73977384

    • SHA1

      741f5b89862fd812d6cbf5c6680cbc2940674a91

    • SHA256

      abffdaabb90f1ff3e06728898385c3a3e143f9b2a34d7e5afb3e5c286029df27

    • SHA512

      9a51dd77b63828a60ab4ce343420c17367ea26e7dac4a4c5a389a92df125fd02a7ffde68e5efc66a32a807c1a4d264077ca1bba8020bf50f4ceee5176379ea84

    • SSDEEP

      6144:HQppap/3X9lLbBwgyaVVi6C7MtVZn3PT3zKST5Oakp7jgJ:HQs/NlLbNdiz7MB3PnKSt1kp7j0

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks