General
-
Target
fb85ef872f04ea75fcaafb5a225336e8_JaffaCakes118
-
Size
851KB
-
Sample
240420-axqksabf27
-
MD5
fb85ef872f04ea75fcaafb5a225336e8
-
SHA1
6d7db894f689eaa9b7452a43c0004f5cf3545375
-
SHA256
3e68ad666d550d0dc3efaee761dc3bb895de9ef416735b0e1f86942ef16ab072
-
SHA512
edc59c18256af31d98e21938da164bf5cbe8d99b19875c1801e5c47c3b049c666b33abcec2a94e4df02df47cf28dea1ed827836838479a7bafff778e961ec305
-
SSDEEP
24576:s+w0ZqyyG85WaE1CqlumQdzexeMhWIIXKj:smZFLgnEJbczewMhDIX6
Behavioral task
behavioral1
Sample
fb85ef872f04ea75fcaafb5a225336e8_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
fb85ef872f04ea75fcaafb5a225336e8_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fb85ef872f04ea75fcaafb5a225336e8_JaffaCakes118
-
Size
851KB
-
MD5
fb85ef872f04ea75fcaafb5a225336e8
-
SHA1
6d7db894f689eaa9b7452a43c0004f5cf3545375
-
SHA256
3e68ad666d550d0dc3efaee761dc3bb895de9ef416735b0e1f86942ef16ab072
-
SHA512
edc59c18256af31d98e21938da164bf5cbe8d99b19875c1801e5c47c3b049c666b33abcec2a94e4df02df47cf28dea1ed827836838479a7bafff778e961ec305
-
SSDEEP
24576:s+w0ZqyyG85WaE1CqlumQdzexeMhWIIXKj:smZFLgnEJbczewMhDIX6
Score7/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Pre-OS Boot
1Bootkit
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1