General
-
Target
2cda61bb8223266ce2ee58c3c0daeb49_JaffaCakes118
-
Size
241KB
-
Sample
240708-sw9ldavhnq
-
MD5
2cda61bb8223266ce2ee58c3c0daeb49
-
SHA1
dc1959e0397778249cef8d73fa8342ce9dc05891
-
SHA256
4adfc8534714a199a7b47e05077d68b05fd2553dea33b2ee846d59b2aee59bbd
-
SHA512
ac512ead604346dbe407d7bcfedc6f644888aeb5bd295dc661368fce18b363521ce7f8b437dc4b68aaae1eea84576004038e23d8ff43c8d535fdf504da7dc76b
-
SSDEEP
6144:KkeENDvTSn2SV/GuhYdViC7X57+nMIa/QP6:KNEND/k/GLPX57+nm/QP6
Malware Config
Targets
-
-
Target
2cda61bb8223266ce2ee58c3c0daeb49_JaffaCakes118
-
Size
241KB
-
MD5
2cda61bb8223266ce2ee58c3c0daeb49
-
SHA1
dc1959e0397778249cef8d73fa8342ce9dc05891
-
SHA256
4adfc8534714a199a7b47e05077d68b05fd2553dea33b2ee846d59b2aee59bbd
-
SHA512
ac512ead604346dbe407d7bcfedc6f644888aeb5bd295dc661368fce18b363521ce7f8b437dc4b68aaae1eea84576004038e23d8ff43c8d535fdf504da7dc76b
-
SSDEEP
6144:KkeENDvTSn2SV/GuhYdViC7X57+nMIa/QP6:KNEND/k/GLPX57+nm/QP6
Score7/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-