General
-
Target
b4d4561f506eb12bfc3e9fb5736fad97_JaffaCakes118
-
Size
20KB
-
Sample
240821-yqz3msxfmc
-
MD5
b4d4561f506eb12bfc3e9fb5736fad97
-
SHA1
65656f226ef008193f3eb16f6d7bc92c8ebb93d9
-
SHA256
91537ae74c464e73c51ec9e0c4c49bb03c051dd826c3bcd37e760388e20fc3c3
-
SHA512
3377277a5b2e74e3a3d7eb676e5f3b6088b74c0be9829a899d31c43b4e30446c4478b9d4c6d69c1d10cfdba8ac11db13e3899e9494bcfbd32fb37c3494a53dd7
-
SSDEEP
384:1zXjmpy0YfLm61NpcLeuHId7yEGnMpxJnVUeKwQSl3x0UrFf:1DC5Y7Sg/VaeK9Slh0U9
Malware Config
Targets
-
-
Target
b4d4561f506eb12bfc3e9fb5736fad97_JaffaCakes118
-
Size
20KB
-
MD5
b4d4561f506eb12bfc3e9fb5736fad97
-
SHA1
65656f226ef008193f3eb16f6d7bc92c8ebb93d9
-
SHA256
91537ae74c464e73c51ec9e0c4c49bb03c051dd826c3bcd37e760388e20fc3c3
-
SHA512
3377277a5b2e74e3a3d7eb676e5f3b6088b74c0be9829a899d31c43b4e30446c4478b9d4c6d69c1d10cfdba8ac11db13e3899e9494bcfbd32fb37c3494a53dd7
-
SSDEEP
384:1zXjmpy0YfLm61NpcLeuHId7yEGnMpxJnVUeKwQSl3x0UrFf:1DC5Y7Sg/VaeK9Slh0U9
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-