General
-
Target
4d5b3aeb4bb7380133342f91191c15c2_JaffaCakes118
-
Size
560KB
-
Sample
240516-2kgwnaca4s
-
MD5
4d5b3aeb4bb7380133342f91191c15c2
-
SHA1
a3a341e80acadcfc1d9cd600ccb8bce9970592ad
-
SHA256
13f46463a53843e6fb36ddb0e8b0c06137b1eeab6ab2512c59166fbe68292a1e
-
SHA512
1f208cc488626e7f463da8ccfa2d7008ecd614c03ff8457d8dd3722380d06dc7b566256a70fcc3045795382bb811cdf4943ba9a1c1706eeeba793d16dd4918d4
-
SSDEEP
12288:E9135BwH0g+soxay2GF+PkLE29Xg0iAEXQfXI9UQgUNWiTR:ELYDoxajWA29CAEXIsgUjR
Malware Config
Targets
-
-
Target
4d5b3aeb4bb7380133342f91191c15c2_JaffaCakes118
-
Size
560KB
-
MD5
4d5b3aeb4bb7380133342f91191c15c2
-
SHA1
a3a341e80acadcfc1d9cd600ccb8bce9970592ad
-
SHA256
13f46463a53843e6fb36ddb0e8b0c06137b1eeab6ab2512c59166fbe68292a1e
-
SHA512
1f208cc488626e7f463da8ccfa2d7008ecd614c03ff8457d8dd3722380d06dc7b566256a70fcc3045795382bb811cdf4943ba9a1c1706eeeba793d16dd4918d4
-
SSDEEP
12288:E9135BwH0g+soxay2GF+PkLE29Xg0iAEXQfXI9UQgUNWiTR:ELYDoxajWA29CAEXIsgUjR
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-