General
-
Target
b2f059a16ed1a5c70c2e449867385868_JaffaCakes118
-
Size
544KB
-
Sample
240821-lgezwsvclm
-
MD5
b2f059a16ed1a5c70c2e449867385868
-
SHA1
3139b65707df1a828ea616741220818ddca0e361
-
SHA256
90e4c2b83ab22fa81d958ba976b0f5a8d3889ec0efd0e915696d2575d9e79c2a
-
SHA512
f27a28223652a0dbe4a2858744847087614c00e04fb110ed5850ed7fe9609ab573d3de879aadd4d340db23ba3810fc549fd2a70034fdf9583546cb288eba4aa5
-
SSDEEP
12288:4rHocGOBEBDog9cv+7ML1ikLyR1ZCbZk3oKFb/18uzJmM0aFDLQ:4AOqBfcm7MhluR1z3oKV95r0h
Malware Config
Targets
-
-
Target
b2f059a16ed1a5c70c2e449867385868_JaffaCakes118
-
Size
544KB
-
MD5
b2f059a16ed1a5c70c2e449867385868
-
SHA1
3139b65707df1a828ea616741220818ddca0e361
-
SHA256
90e4c2b83ab22fa81d958ba976b0f5a8d3889ec0efd0e915696d2575d9e79c2a
-
SHA512
f27a28223652a0dbe4a2858744847087614c00e04fb110ed5850ed7fe9609ab573d3de879aadd4d340db23ba3810fc549fd2a70034fdf9583546cb288eba4aa5
-
SSDEEP
12288:4rHocGOBEBDog9cv+7ML1ikLyR1ZCbZk3oKFb/18uzJmM0aFDLQ:4AOqBfcm7MhluR1z3oKV95r0h
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-