General
-
Target
f71ab2b648f6f9dbe1d4735c61fa01a3_JaffaCakes118
-
Size
144KB
-
Sample
240418-dbfp8sha76
-
MD5
f71ab2b648f6f9dbe1d4735c61fa01a3
-
SHA1
237448caae90440aea310297b35b8d17bc4e16c4
-
SHA256
e2b23e5673bbd3a4cfcaa732e923360796d45dcd3ccd641223009aa3ee00d0e9
-
SHA512
092a07ca6fe96397ff413b331c108e90eeb4e5d836e2ac7a09cae7db1e3d566bc6e0a8be65b5edc369b746e66430320146812c05a5c39813bebb45d734dfed72
-
SSDEEP
3072:+x2t47TVrgHAm2TJUfLWKJsRAno8KCH9Q1jiOpD6VKQ0boOAP8iBw+FyO:02t4/VrAAm2dUf/CMHMrD6VKQ0bovd
Malware Config
Targets
-
-
Target
f71ab2b648f6f9dbe1d4735c61fa01a3_JaffaCakes118
-
Size
144KB
-
MD5
f71ab2b648f6f9dbe1d4735c61fa01a3
-
SHA1
237448caae90440aea310297b35b8d17bc4e16c4
-
SHA256
e2b23e5673bbd3a4cfcaa732e923360796d45dcd3ccd641223009aa3ee00d0e9
-
SHA512
092a07ca6fe96397ff413b331c108e90eeb4e5d836e2ac7a09cae7db1e3d566bc6e0a8be65b5edc369b746e66430320146812c05a5c39813bebb45d734dfed72
-
SSDEEP
3072:+x2t47TVrgHAm2TJUfLWKJsRAno8KCH9Q1jiOpD6VKQ0boOAP8iBw+FyO:02t4/VrAAm2dUf/CMHMrD6VKQ0bovd
Score7/10-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-