General
-
Target
fadb8d6f198a54b0ad19cd3f177bd41b_JaffaCakes118
-
Size
45KB
-
Sample
240419-wjzgescb2w
-
MD5
fadb8d6f198a54b0ad19cd3f177bd41b
-
SHA1
901cee5d14e7e2f2bf24913c40098c1daf77d9f4
-
SHA256
32eeedb56dd2d07a82fe44a9bd7170ce8f1ff11571e13011ba8aa7d7b65cefee
-
SHA512
6357a549c52b55a4d1ab3feedd6e3931790bef30121a9bab7d1f01a9044f29aa9d9040bb25a5717106aeae84ca102ae5ea40e69d6038124a8ebb5f3bb9986b5d
-
SSDEEP
768:esGEaskiMV2iTz4lUKRzbUacIirE0M+tNXzCJ189NZYANS1t7L9Y+zytFoPa4:es31ki8Tz4lUbNQ0M+tNXzuoZYANS8tg
Static task
static1
Behavioral task
behavioral1
Sample
fadb8d6f198a54b0ad19cd3f177bd41b_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fadb8d6f198a54b0ad19cd3f177bd41b_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
fadb8d6f198a54b0ad19cd3f177bd41b_JaffaCakes118
-
Size
45KB
-
MD5
fadb8d6f198a54b0ad19cd3f177bd41b
-
SHA1
901cee5d14e7e2f2bf24913c40098c1daf77d9f4
-
SHA256
32eeedb56dd2d07a82fe44a9bd7170ce8f1ff11571e13011ba8aa7d7b65cefee
-
SHA512
6357a549c52b55a4d1ab3feedd6e3931790bef30121a9bab7d1f01a9044f29aa9d9040bb25a5717106aeae84ca102ae5ea40e69d6038124a8ebb5f3bb9986b5d
-
SSDEEP
768:esGEaskiMV2iTz4lUKRzbUacIirE0M+tNXzCJ189NZYANS1t7L9Y+zytFoPa4:es31ki8Tz4lUbNQ0M+tNXzuoZYANS8tg
Score10/10-
Modifies WinLogon for persistence
-
Deletes itself
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-