General
-
Target
4b1ea697709b01387c828930fcdae181_JaffaCakes118
-
Size
51KB
-
Sample
240715-yek5caydrd
-
MD5
4b1ea697709b01387c828930fcdae181
-
SHA1
168b0ab8819d80526ae1639e31c4b2b05be61527
-
SHA256
4244728855560a89e8a4c10ad3c54d1139a0e70e198466d0f864b6083ebdc8de
-
SHA512
717dce604f3c771a8c74ccb92e5ec5dc67509817afe7088ceaed7e3cf4b60b1e2e95851fe50bd6a4f4fb527cb094fda409107506242a5b96ec9a561e37ea982a
-
SSDEEP
768:jC5q5QSw2v39N8/PmJ/6F+9ahzMGOzTMwQ7y/u4Wt7Mx1TK42n8xRTSH7:G5q5Q6Nqi/8hqMw9uxMnKOxRTi7
Malware Config
Targets
-
-
Target
4b1ea697709b01387c828930fcdae181_JaffaCakes118
-
Size
51KB
-
MD5
4b1ea697709b01387c828930fcdae181
-
SHA1
168b0ab8819d80526ae1639e31c4b2b05be61527
-
SHA256
4244728855560a89e8a4c10ad3c54d1139a0e70e198466d0f864b6083ebdc8de
-
SHA512
717dce604f3c771a8c74ccb92e5ec5dc67509817afe7088ceaed7e3cf4b60b1e2e95851fe50bd6a4f4fb527cb094fda409107506242a5b96ec9a561e37ea982a
-
SSDEEP
768:jC5q5QSw2v39N8/PmJ/6F+9ahzMGOzTMwQ7y/u4Wt7Mx1TK42n8xRTSH7:G5q5Q6Nqi/8hqMw9uxMnKOxRTi7
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-