General
-
Target
aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118
-
Size
727KB
-
Sample
240615-rdp9cashrf
-
MD5
aec67ff7cd461cb19996003a1a4d5ef2
-
SHA1
ef03be600c8a8bddd1c2f15d087c694ed4860a63
-
SHA256
be236d2f5d44d260e5a77b11f41c798150e39da45f04cf1a3a4947606f93a761
-
SHA512
45b729a8ecf3de47603ac0553c00d77ddbbfe21c26f296eaa675762d449be85395620ada7b329dbf98673f388c70ebf8224ea83004d858aed8880a4167773c22
-
SSDEEP
12288:DwECaUglPnFsk7P0UahDyDT1SBRXjIjpzDcOWnCqPR:DwEC70qkgUahDuMR0cO8JPR
Static task
static1
Behavioral task
behavioral1
Sample
aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118
-
Size
727KB
-
MD5
aec67ff7cd461cb19996003a1a4d5ef2
-
SHA1
ef03be600c8a8bddd1c2f15d087c694ed4860a63
-
SHA256
be236d2f5d44d260e5a77b11f41c798150e39da45f04cf1a3a4947606f93a761
-
SHA512
45b729a8ecf3de47603ac0553c00d77ddbbfe21c26f296eaa675762d449be85395620ada7b329dbf98673f388c70ebf8224ea83004d858aed8880a4167773c22
-
SSDEEP
12288:DwECaUglPnFsk7P0UahDyDT1SBRXjIjpzDcOWnCqPR:DwEC70qkgUahDuMR0cO8JPR
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-