General
-
Target
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06_JaffaCakes118
-
Size
1.2MB
-
Sample
240418-2ykvgahd22
-
MD5
40b8ae373aa61f06f3a5eb36f9b38096
-
SHA1
c60348ae001455ac84deb1f8c71624c5327c74b2
-
SHA256
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06
-
SHA512
9b093eb3c74e5115b7e538fed9f021d2c1f45a4990dec2c877f6cbcff48fdd04cdd0ddc0cd600474a17ec2b44d3fd2038cfc1794c3382958b4891426c2035503
-
SSDEEP
24576:ftAI+w2xVzggCGRsBX7yKXWC/IbSOCXxPdatpVxK0vW5O3Vc:FR2xVz5RsBX+KqbSOWdqZK0vVVc
Static task
static1
Behavioral task
behavioral1
Sample
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06_JaffaCakes118
-
Size
1.2MB
-
MD5
40b8ae373aa61f06f3a5eb36f9b38096
-
SHA1
c60348ae001455ac84deb1f8c71624c5327c74b2
-
SHA256
f8f03eb41c0b00aa6131804a787a6cc7a2a75c26539b5859f551dde077f8fc06
-
SHA512
9b093eb3c74e5115b7e538fed9f021d2c1f45a4990dec2c877f6cbcff48fdd04cdd0ddc0cd600474a17ec2b44d3fd2038cfc1794c3382958b4891426c2035503
-
SSDEEP
24576:ftAI+w2xVzggCGRsBX7yKXWC/IbSOCXxPdatpVxK0vW5O3Vc:FR2xVz5RsBX+KqbSOWdqZK0vVVc
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-