General
-
Target
267471b5a45f9dfd905aaa08736238bf_JaffaCakes118
-
Size
561KB
-
Sample
240508-ylmlraeh82
-
MD5
267471b5a45f9dfd905aaa08736238bf
-
SHA1
2926e6e83583e7ed2bea7615012a9597ab469d7c
-
SHA256
362caf6ffc7140ed40dee2ee63b8eb3fa9eef4b422b90f6a18f748f2310df2a3
-
SHA512
30c16a6579a569eb7af4276f67ed19a43ae6c08e804aa643dc78fd9b967d219ecc7ab64db7be0ecc2a00b0d0094c5ddb7190da1deb583da3c4049c809c621b80
-
SSDEEP
12288:c/313mdxVEQuU6AvdfQrxNR70uyl5AVZJlHyDPUDXN:8313SLnfQrxNR7AGZJlHUPkXN
Static task
static1
Behavioral task
behavioral1
Sample
267471b5a45f9dfd905aaa08736238bf_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
267471b5a45f9dfd905aaa08736238bf_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
267471b5a45f9dfd905aaa08736238bf_JaffaCakes118
-
Size
561KB
-
MD5
267471b5a45f9dfd905aaa08736238bf
-
SHA1
2926e6e83583e7ed2bea7615012a9597ab469d7c
-
SHA256
362caf6ffc7140ed40dee2ee63b8eb3fa9eef4b422b90f6a18f748f2310df2a3
-
SHA512
30c16a6579a569eb7af4276f67ed19a43ae6c08e804aa643dc78fd9b967d219ecc7ab64db7be0ecc2a00b0d0094c5ddb7190da1deb583da3c4049c809c621b80
-
SSDEEP
12288:c/313mdxVEQuU6AvdfQrxNR70uyl5AVZJlHyDPUDXN:8313SLnfQrxNR7AGZJlHUPkXN
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-