General
-
Target
048797edf023520257a8951989af07d6_JaffaCakes118
-
Size
518KB
-
Sample
240623-ah6nfs1frd
-
MD5
048797edf023520257a8951989af07d6
-
SHA1
b94014bc3251baeb0fa24beac0dccdd1acefe793
-
SHA256
a53ba8fca2449802da2a345687b5a831bef42a2499e2f1a0c3cef07babdbfe4b
-
SHA512
c942133b76832391f07f7c19d4ac3339827124cbd6fa5ce0f1e1d14585f9d352945906a9e726fa13e656274252aa0c63a0e3ef335534c944e04aff76255c3dbf
-
SSDEEP
12288:9rVZhZyNm/Y0qa+eYi8qob1Q5W20oVVDnqw3P/:9r9Z4mAvFeYi871Q5Iqtzf/
Static task
static1
Behavioral task
behavioral1
Sample
048797edf023520257a8951989af07d6_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
048797edf023520257a8951989af07d6_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
048797edf023520257a8951989af07d6_JaffaCakes118
-
Size
518KB
-
MD5
048797edf023520257a8951989af07d6
-
SHA1
b94014bc3251baeb0fa24beac0dccdd1acefe793
-
SHA256
a53ba8fca2449802da2a345687b5a831bef42a2499e2f1a0c3cef07babdbfe4b
-
SHA512
c942133b76832391f07f7c19d4ac3339827124cbd6fa5ce0f1e1d14585f9d352945906a9e726fa13e656274252aa0c63a0e3ef335534c944e04aff76255c3dbf
-
SSDEEP
12288:9rVZhZyNm/Y0qa+eYi8qob1Q5W20oVVDnqw3P/:9r9Z4mAvFeYi871Q5Iqtzf/
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-