General
-
Target
74a25a2a3ad244ac58017e7c0b773266_JaffaCakes118
-
Size
236KB
-
Sample
240726-sxqjwszdla
-
MD5
74a25a2a3ad244ac58017e7c0b773266
-
SHA1
ceb59e0ed0e445f044d9ddbee91f7c0f255e6c20
-
SHA256
aa161e1b9611b5a5d220058d3f6038e3c0998e567af754d5035e662f9d4abec1
-
SHA512
eaeff2aab5cdcfdd99100659c7cf14fbda9e4818ad1dcce044356480e28d9d9b41dadef9345fa7a18a90ecd1a9c4e0687c1bfe14c4bc6d748a6ed0a008ccb470
-
SSDEEP
3072:SlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8Pyqs0sFm9vM6eVSnWsz:p3kOMeaavF17EP6qyqsSuVSjmWIg
Behavioral task
behavioral1
Sample
74a25a2a3ad244ac58017e7c0b773266_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
74a25a2a3ad244ac58017e7c0b773266_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
74a25a2a3ad244ac58017e7c0b773266_JaffaCakes118
-
Size
236KB
-
MD5
74a25a2a3ad244ac58017e7c0b773266
-
SHA1
ceb59e0ed0e445f044d9ddbee91f7c0f255e6c20
-
SHA256
aa161e1b9611b5a5d220058d3f6038e3c0998e567af754d5035e662f9d4abec1
-
SHA512
eaeff2aab5cdcfdd99100659c7cf14fbda9e4818ad1dcce044356480e28d9d9b41dadef9345fa7a18a90ecd1a9c4e0687c1bfe14c4bc6d748a6ed0a008ccb470
-
SSDEEP
3072:SlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8Pyqs0sFm9vM6eVSnWsz:p3kOMeaavF17EP6qyqsSuVSjmWIg
Score7/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Matrix ATT&CK v13
Defense Evasion
Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1Modify Registry
1