General
-
Target
f94fb2d47d9c9e2f1f54e59ba7cd7a25_JaffaCakes118
-
Size
410KB
-
Sample
240419-c195psed26
-
MD5
f94fb2d47d9c9e2f1f54e59ba7cd7a25
-
SHA1
d78493793f7be21a2dd3586c12040dea30d1aee3
-
SHA256
2a0801e65512fc6cd5fd144d99ae9ff916788f832a3f5172e75ba6f2e4b12bfb
-
SHA512
f20ec944743f4ef9f00dedc7872078e1c871ec0d6b485183f8955efeea27b405fe44f880cec5aae7e844b3570350dc4464c019e6a055141e8b807c1c3aa85743
-
SSDEEP
12288:QMJO2RPK8b/Wr2kbjaexIQqyeaOqVoYYuNtTird:DJO2Rf7IjUAeaOEoOTEd
Static task
static1
Behavioral task
behavioral1
Sample
f94fb2d47d9c9e2f1f54e59ba7cd7a25_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f94fb2d47d9c9e2f1f54e59ba7cd7a25_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f94fb2d47d9c9e2f1f54e59ba7cd7a25_JaffaCakes118
-
Size
410KB
-
MD5
f94fb2d47d9c9e2f1f54e59ba7cd7a25
-
SHA1
d78493793f7be21a2dd3586c12040dea30d1aee3
-
SHA256
2a0801e65512fc6cd5fd144d99ae9ff916788f832a3f5172e75ba6f2e4b12bfb
-
SHA512
f20ec944743f4ef9f00dedc7872078e1c871ec0d6b485183f8955efeea27b405fe44f880cec5aae7e844b3570350dc4464c019e6a055141e8b807c1c3aa85743
-
SSDEEP
12288:QMJO2RPK8b/Wr2kbjaexIQqyeaOqVoYYuNtTird:DJO2Rf7IjUAeaOEoOTEd
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-