General
-
Target
060db01dc499c841b7bfe0ed33dd8e24_JaffaCakes118
-
Size
20KB
-
Sample
240620-pvw24ssarp
-
MD5
060db01dc499c841b7bfe0ed33dd8e24
-
SHA1
11c4d302265f49154481cf60083d2ea79f53da91
-
SHA256
b6d1243ab84286d1975662c4880032cc4004550ff49d46d4aee218421944633f
-
SHA512
f1c1a4741e7872ffb2cbcbf0547d67686e642d26800eb8cf33595f6c63a63750629069b6569b40f34b21043e014a6b858ecb64673fb45894d84e40f36208582b
-
SSDEEP
384:Q5tHfvrLuoILkRaZXs8p7Y6fi1jPjqWok69Fqr/UP4o/+iBc5F:Q4LkRaZXsq7Y6f+Duqr/UPHpBq
Static task
static1
Behavioral task
behavioral1
Sample
060db01dc499c841b7bfe0ed33dd8e24_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
060db01dc499c841b7bfe0ed33dd8e24_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
060db01dc499c841b7bfe0ed33dd8e24_JaffaCakes118
-
Size
20KB
-
MD5
060db01dc499c841b7bfe0ed33dd8e24
-
SHA1
11c4d302265f49154481cf60083d2ea79f53da91
-
SHA256
b6d1243ab84286d1975662c4880032cc4004550ff49d46d4aee218421944633f
-
SHA512
f1c1a4741e7872ffb2cbcbf0547d67686e642d26800eb8cf33595f6c63a63750629069b6569b40f34b21043e014a6b858ecb64673fb45894d84e40f36208582b
-
SSDEEP
384:Q5tHfvrLuoILkRaZXs8p7Y6fi1jPjqWok69Fqr/UP4o/+iBc5F:Q4LkRaZXsq7Y6f+Duqr/UPHpBq
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-