General

  • Target

    7463562023896487cd7b55599db9dfb5_JaffaCakes118

  • Size

    505KB

  • Sample

    240526-flbv5sfg31

  • MD5

    7463562023896487cd7b55599db9dfb5

  • SHA1

    0d56e71b30dfd3e6dc1adae22f6ffa6aa2655480

  • SHA256

    65735437b08748338332a8a0358059124390893e4701b710e089b29fbe260f8b

  • SHA512

    9de8d303ec98e8d490a7d836d8cd2bc1f35cbf35a42baca6865f0de7e1c92ab76254a8a18deab9e24f38456b95485f452cf47904e43dfc17b2ec099f2e97c5e7

  • SSDEEP

    6144:Exd0r+zwr2rNy8daL6ku/GWSHaXCMMN+3rhmBF9Z9wBjufk41SWJir5GY/F9g:gdHsr2rNv6aGTSIF9YU84IZr5G49g

Score
6/10

Malware Config

Targets

    • Target

      7463562023896487cd7b55599db9dfb5_JaffaCakes118

    • Size

      505KB

    • MD5

      7463562023896487cd7b55599db9dfb5

    • SHA1

      0d56e71b30dfd3e6dc1adae22f6ffa6aa2655480

    • SHA256

      65735437b08748338332a8a0358059124390893e4701b710e089b29fbe260f8b

    • SHA512

      9de8d303ec98e8d490a7d836d8cd2bc1f35cbf35a42baca6865f0de7e1c92ab76254a8a18deab9e24f38456b95485f452cf47904e43dfc17b2ec099f2e97c5e7

    • SSDEEP

      6144:Exd0r+zwr2rNy8daL6ku/GWSHaXCMMN+3rhmBF9Z9wBjufk41SWJir5GY/F9g:gdHsr2rNv6aGTSIF9YU84IZr5G49g

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks