General
-
Target
fa5005813843266ff308d8e4eff9b3bf_JaffaCakes118
-
Size
816KB
-
Sample
240419-pv3vnace99
-
MD5
fa5005813843266ff308d8e4eff9b3bf
-
SHA1
9bffe26e49ef21feee8ff3cf0910f223264eeb84
-
SHA256
d59b00797d440afc5dade00fecb66c72b9f26305bcb6b3ce8e925ca823bf426c
-
SHA512
f93d169f7c6389c22c5c879503ca4f9214652c485e600a2402682b6b5422583ca587142511b2cc10f2d05cae0e4754dc1048a6a21df5d6cf5213e9ed0ce304ca
-
SSDEEP
24576:hBBRDGCBRhVjOO8+Dpd7ATWQmXoRq3py0:5xLB+A7qvmqq3x
Static task
static1
Behavioral task
behavioral1
Sample
fa5005813843266ff308d8e4eff9b3bf_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fa5005813843266ff308d8e4eff9b3bf_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
fa5005813843266ff308d8e4eff9b3bf_JaffaCakes118
-
Size
816KB
-
MD5
fa5005813843266ff308d8e4eff9b3bf
-
SHA1
9bffe26e49ef21feee8ff3cf0910f223264eeb84
-
SHA256
d59b00797d440afc5dade00fecb66c72b9f26305bcb6b3ce8e925ca823bf426c
-
SHA512
f93d169f7c6389c22c5c879503ca4f9214652c485e600a2402682b6b5422583ca587142511b2cc10f2d05cae0e4754dc1048a6a21df5d6cf5213e9ed0ce304ca
-
SSDEEP
24576:hBBRDGCBRhVjOO8+Dpd7ATWQmXoRq3py0:5xLB+A7qvmqq3x
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-