General
-
Target
26bd4cd169b2c48cc0902d1433600c6c_JaffaCakes118
-
Size
2.5MB
-
Sample
240508-zxtpwaaa56
-
MD5
26bd4cd169b2c48cc0902d1433600c6c
-
SHA1
beb255e16ddfc57fc8cc694a88b63240b9f08e19
-
SHA256
a5f2a1ab97a9d6886cae2f4d57424321bff4f57fd31e421841aa082716d8311e
-
SHA512
99d0c82097f2f37979b4877427e348ac4323370d0fa66bd8c230359325f11c56b72d9122a2ebe1bfd9a452f05a3a731f88f0f3e726bbed84950aa00bb4656e29
-
SSDEEP
49152:1iLPCG5Icnq7JVQpVIoXY7/IMu2bxb4pUzCynZP4F3OfaSz1qBal:1itoVQpM/IubB9nZPSO/5qY
Static task
static1
Behavioral task
behavioral1
Sample
26bd4cd169b2c48cc0902d1433600c6c_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
26bd4cd169b2c48cc0902d1433600c6c_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
26bd4cd169b2c48cc0902d1433600c6c_JaffaCakes118
-
Size
2.5MB
-
MD5
26bd4cd169b2c48cc0902d1433600c6c
-
SHA1
beb255e16ddfc57fc8cc694a88b63240b9f08e19
-
SHA256
a5f2a1ab97a9d6886cae2f4d57424321bff4f57fd31e421841aa082716d8311e
-
SHA512
99d0c82097f2f37979b4877427e348ac4323370d0fa66bd8c230359325f11c56b72d9122a2ebe1bfd9a452f05a3a731f88f0f3e726bbed84950aa00bb4656e29
-
SSDEEP
49152:1iLPCG5Icnq7JVQpVIoXY7/IMu2bxb4pUzCynZP4F3OfaSz1qBal:1itoVQpM/IubB9nZPSO/5qY
Score7/10-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-