General
-
Target
06f701b9ca301e0a15d73b8d332803f5_JaffaCakes118
-
Size
20KB
-
Sample
240620-r5v9nsshjf
-
MD5
06f701b9ca301e0a15d73b8d332803f5
-
SHA1
0adfb61bb2daa8b1e08b54588cfed3a0747c5762
-
SHA256
47ff7faca8d5869268c068eb8f7727199bfb688465e29277251b21103ae5ae40
-
SHA512
95d2570f07cee04d23371abbe790fd1e3f5781871f46bd0cc9caf12e1c43577d5756b7632f8f52c030ca18c9ac7ddcab6ac91af2374385ab8205effd1a5e695d
-
SSDEEP
384:MGMi9hIr3iYDvGnPfs1zDrKX8MoSoua2ZqXz2BL4tnRhy:+asPDvGn3GvWHa2ZqDCyRh
Static task
static1
Behavioral task
behavioral1
Sample
06f701b9ca301e0a15d73b8d332803f5_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
06f701b9ca301e0a15d73b8d332803f5_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
06f701b9ca301e0a15d73b8d332803f5_JaffaCakes118
-
Size
20KB
-
MD5
06f701b9ca301e0a15d73b8d332803f5
-
SHA1
0adfb61bb2daa8b1e08b54588cfed3a0747c5762
-
SHA256
47ff7faca8d5869268c068eb8f7727199bfb688465e29277251b21103ae5ae40
-
SHA512
95d2570f07cee04d23371abbe790fd1e3f5781871f46bd0cc9caf12e1c43577d5756b7632f8f52c030ca18c9ac7ddcab6ac91af2374385ab8205effd1a5e695d
-
SSDEEP
384:MGMi9hIr3iYDvGnPfs1zDrKX8MoSoua2ZqXz2BL4tnRhy:+asPDvGn3GvWHa2ZqDCyRh
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-