General

  • Target

    JaffaCakes118_438ebef848c9084dc43a038e0e6795e4

  • Size

    28KB

  • Sample

    250127-zmlaravrhp

  • MD5

    438ebef848c9084dc43a038e0e6795e4

  • SHA1

    18dfb34ae272a7099986973b35873cc23e2fb224

  • SHA256

    eafd7ad025ac1d297904d36b622dec1c3efeb565fad0333144360d8ffb653edd

  • SHA512

    59d9809791247d562067de341733f44a450493879b6bbb96296edfecd54c3e550633e5d6760266dfeea0054df30772f39572885d821c12792df7ae02031bdc72

  • SSDEEP

    768:KbZCT2bQ7BhbanF0Bno6CgdIekkyj+nr2EPAY7:K4T2bwyn8ndAeEPEPAY

Malware Config

Targets

    • Target

      JaffaCakes118_438ebef848c9084dc43a038e0e6795e4

    • Size

      28KB

    • MD5

      438ebef848c9084dc43a038e0e6795e4

    • SHA1

      18dfb34ae272a7099986973b35873cc23e2fb224

    • SHA256

      eafd7ad025ac1d297904d36b622dec1c3efeb565fad0333144360d8ffb653edd

    • SHA512

      59d9809791247d562067de341733f44a450493879b6bbb96296edfecd54c3e550633e5d6760266dfeea0054df30772f39572885d821c12792df7ae02031bdc72

    • SSDEEP

      768:KbZCT2bQ7BhbanF0Bno6CgdIekkyj+nr2EPAY7:K4T2bwyn8ndAeEPEPAY

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks