General
-
Target
fb80a7c65b6bf20d9479ef3f5d112592_JaffaCakes118
-
Size
548KB
-
Sample
240420-ap8fmacc5v
-
MD5
fb80a7c65b6bf20d9479ef3f5d112592
-
SHA1
f6119d5d80ef4527ccc3514ee04883789a70336a
-
SHA256
7914966d04455dab1927ea3d4f117810a5a6113e3fb9ca79c6b1ae7d02ccf434
-
SHA512
bbb6a2a2cdbfe3a9a92d57b792b0912400c25c7cab10fbd007b82582ca81c4c449d3c20cdda246aeb4fcfee0a554c84a144bddd00dea93fc0b00eb250ec1303f
-
SSDEEP
12288:L7l4s3shTJBJbI3HfdVQyBc+pQ5KA5QzDP7+FxJvjaVbkbJHURZbK:LGs3qTZbIXVVPe+pE/2D7EvSbkbdwG
Malware Config
Targets
-
-
Target
fb80a7c65b6bf20d9479ef3f5d112592_JaffaCakes118
-
Size
548KB
-
MD5
fb80a7c65b6bf20d9479ef3f5d112592
-
SHA1
f6119d5d80ef4527ccc3514ee04883789a70336a
-
SHA256
7914966d04455dab1927ea3d4f117810a5a6113e3fb9ca79c6b1ae7d02ccf434
-
SHA512
bbb6a2a2cdbfe3a9a92d57b792b0912400c25c7cab10fbd007b82582ca81c4c449d3c20cdda246aeb4fcfee0a554c84a144bddd00dea93fc0b00eb250ec1303f
-
SSDEEP
12288:L7l4s3shTJBJbI3HfdVQyBc+pQ5KA5QzDP7+FxJvjaVbkbJHURZbK:LGs3qTZbIXVVPe+pE/2D7EvSbkbdwG
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-