General
-
Target
c082a77a8f7b98f29ed80e3298c67b01_JaffaCakes118
-
Size
205KB
-
Sample
240825-l78pwsydrd
-
MD5
c082a77a8f7b98f29ed80e3298c67b01
-
SHA1
3bf022dcceab25bd0ba70f7fa37c135733ca6d50
-
SHA256
d8265e7447dc6e46582e48ad6652a4ebbe649063308ad5db9c186888df89630c
-
SHA512
a0b27fb1da4cd6e8c6c8f65fce2c4ebc56997ff7cf531e67995f16d2cb82c1c7d28830e802f661ecd86ff3e4469b3f3b03e76201981b20fff27f49cc816148ed
-
SSDEEP
6144:j0yXtBZbJGMwZdH96WSREd+Y/acdBZBAyz6RnEoP:j0y9Bu3d9mEQY/rL4y+iC
Behavioral task
behavioral1
Sample
c082a77a8f7b98f29ed80e3298c67b01_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c082a77a8f7b98f29ed80e3298c67b01_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
c082a77a8f7b98f29ed80e3298c67b01_JaffaCakes118
-
Size
205KB
-
MD5
c082a77a8f7b98f29ed80e3298c67b01
-
SHA1
3bf022dcceab25bd0ba70f7fa37c135733ca6d50
-
SHA256
d8265e7447dc6e46582e48ad6652a4ebbe649063308ad5db9c186888df89630c
-
SHA512
a0b27fb1da4cd6e8c6c8f65fce2c4ebc56997ff7cf531e67995f16d2cb82c1c7d28830e802f661ecd86ff3e4469b3f3b03e76201981b20fff27f49cc816148ed
-
SSDEEP
6144:j0yXtBZbJGMwZdH96WSREd+Y/acdBZBAyz6RnEoP:j0y9Bu3d9mEQY/rL4y+iC
Score7/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1