General
-
Target
07b4e1db37f7c6da16113ca7ec75ede3_JaffaCakes118
-
Size
20KB
-
Sample
240620-twexfa1cnn
-
MD5
07b4e1db37f7c6da16113ca7ec75ede3
-
SHA1
3e0255f4d6837ccfbdc2dc640be022a577289e47
-
SHA256
ea09da770f88c76a38573015773bf08c4e239e72d34e7ff7d47e38f5b8cbdcf6
-
SHA512
321d9b153534dee743296d00326bdac0b7de848757ead074a9dc63f4bca5e5e4a25a8bf91b6c042a498aeb1d1cbe614112b2c370a99c2ac93657b6c4ac8242f9
-
SSDEEP
384:Nz6mhwJrajdHdtxn8vGVuQpXlWM02xU0SnoWVvvvAbug:uudHPd8vGQQ3k2x9wvvvAd
Static task
static1
Behavioral task
behavioral1
Sample
07b4e1db37f7c6da16113ca7ec75ede3_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
07b4e1db37f7c6da16113ca7ec75ede3_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
07b4e1db37f7c6da16113ca7ec75ede3_JaffaCakes118
-
Size
20KB
-
MD5
07b4e1db37f7c6da16113ca7ec75ede3
-
SHA1
3e0255f4d6837ccfbdc2dc640be022a577289e47
-
SHA256
ea09da770f88c76a38573015773bf08c4e239e72d34e7ff7d47e38f5b8cbdcf6
-
SHA512
321d9b153534dee743296d00326bdac0b7de848757ead074a9dc63f4bca5e5e4a25a8bf91b6c042a498aeb1d1cbe614112b2c370a99c2ac93657b6c4ac8242f9
-
SSDEEP
384:Nz6mhwJrajdHdtxn8vGVuQpXlWM02xU0SnoWVvvvAbug:uudHPd8vGQQ3k2x9wvvvAd
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-