General
-
Target
fab07fe70d8bff909875addcb6d6941e_JaffaCakes118
-
Size
1.8MB
-
Sample
240419-tvaw4agh98
-
MD5
fab07fe70d8bff909875addcb6d6941e
-
SHA1
61bdcf83229b437f0c7113adf45009a9b3d0a5d8
-
SHA256
17fc9c49de2bbca4154fa686b76604c8959abfbbe08d8534e0937dc142a3ba0b
-
SHA512
bab7769ea4bd26caa8c214f5c3ce7a458d536ac6b2bca39284684a14e548c57876405b34eb7fc49da92714223e9616e2bffd090e586bd57b8b1139d7a9a32711
-
SSDEEP
49152:/DntY25DM1uzOpQxg7V63V3LWMLRZtn6UbWuOXAdv:/B95PZOQF3aMLRrn6mN
Static task
static1
Behavioral task
behavioral1
Sample
fab07fe70d8bff909875addcb6d6941e_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fab07fe70d8bff909875addcb6d6941e_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fab07fe70d8bff909875addcb6d6941e_JaffaCakes118
-
Size
1.8MB
-
MD5
fab07fe70d8bff909875addcb6d6941e
-
SHA1
61bdcf83229b437f0c7113adf45009a9b3d0a5d8
-
SHA256
17fc9c49de2bbca4154fa686b76604c8959abfbbe08d8534e0937dc142a3ba0b
-
SHA512
bab7769ea4bd26caa8c214f5c3ce7a458d536ac6b2bca39284684a14e548c57876405b34eb7fc49da92714223e9616e2bffd090e586bd57b8b1139d7a9a32711
-
SSDEEP
49152:/DntY25DM1uzOpQxg7V63V3LWMLRZtn6UbWuOXAdv:/B95PZOQF3aMLRrn6mN
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-