General
-
Target
baf68340422b75b48e910cdbeb7511cf_JaffaCakes118
-
Size
436KB
-
Sample
240823-j5mcrstbma
-
MD5
baf68340422b75b48e910cdbeb7511cf
-
SHA1
9d4a2d99e097156c6ed2135d6685c6ecc64a5439
-
SHA256
44fb0b35964e0cb99b45b0a46353ea2abd1a4bd01b7d86fff94b9a6b5415a7b3
-
SHA512
38130595c9b95ba02f333d47867fce437d96f1a88350ef1f74965625c7cd6436b1a336fd1b60198507cf58601fb3a29da9499f6c25115a82677637bf98016607
-
SSDEEP
12288:nouztr4RaIwn+/RdDjaPsXOkqzCrRCgZ03KN59v+z9ncuX:oCZIwnIDGPsXzqG9hZ/N5N+z9
Malware Config
Targets
-
-
Target
baf68340422b75b48e910cdbeb7511cf_JaffaCakes118
-
Size
436KB
-
MD5
baf68340422b75b48e910cdbeb7511cf
-
SHA1
9d4a2d99e097156c6ed2135d6685c6ecc64a5439
-
SHA256
44fb0b35964e0cb99b45b0a46353ea2abd1a4bd01b7d86fff94b9a6b5415a7b3
-
SHA512
38130595c9b95ba02f333d47867fce437d96f1a88350ef1f74965625c7cd6436b1a336fd1b60198507cf58601fb3a29da9499f6c25115a82677637bf98016607
-
SSDEEP
12288:nouztr4RaIwn+/RdDjaPsXOkqzCrRCgZ03KN59v+z9ncuX:oCZIwnIDGPsXzqG9hZ/N5N+z9
Score7/10-
VMProtect packed file
Detects executables packed with VMProtect commercial packer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-