General
-
Target
05e64033d73526d239c4b1f06a0fccd5_JaffaCakes118
-
Size
93KB
-
Sample
240428-x3lkcafd2y
-
MD5
05e64033d73526d239c4b1f06a0fccd5
-
SHA1
1090a6a1f999b34d3ae8e4953912a20f38c463d6
-
SHA256
b4bf2e9e3f3cddca63a753968138825c9959b0f22d49842509bc6efb2298c9d3
-
SHA512
d5cbade4be78d9c3965a3fc4102a033015cf987ec824ed79475b1867c2571e3080c6285a055d7b0bfb0e059ed8415868566258c7dd34321528930d71d146860f
-
SSDEEP
1536:UGjS/jdLRqInfX2D/LDsFCTnSrtSJvU3cyBOO/dh6q6ufTDf4:UGjSLdl9fXILwF2n1Jv6hp6unQ
Static task
static1
Behavioral task
behavioral1
Sample
05e64033d73526d239c4b1f06a0fccd5_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
05e64033d73526d239c4b1f06a0fccd5_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
05e64033d73526d239c4b1f06a0fccd5_JaffaCakes118
-
Size
93KB
-
MD5
05e64033d73526d239c4b1f06a0fccd5
-
SHA1
1090a6a1f999b34d3ae8e4953912a20f38c463d6
-
SHA256
b4bf2e9e3f3cddca63a753968138825c9959b0f22d49842509bc6efb2298c9d3
-
SHA512
d5cbade4be78d9c3965a3fc4102a033015cf987ec824ed79475b1867c2571e3080c6285a055d7b0bfb0e059ed8415868566258c7dd34321528930d71d146860f
-
SSDEEP
1536:UGjS/jdLRqInfX2D/LDsFCTnSrtSJvU3cyBOO/dh6q6ufTDf4:UGjSLdl9fXILwF2n1Jv6hp6unQ
Score7/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Pre-OS Boot
1Bootkit
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1