General
-
Target
f680365dd97dc5b29159644ff9124baa_JaffaCakes118
-
Size
76KB
-
Sample
240925-vznjesxelr
-
MD5
f680365dd97dc5b29159644ff9124baa
-
SHA1
4ab05750b5a65cc319f36a85f080ef801acca0f8
-
SHA256
ab258e4062c54267fcdd423d4ade8469ded2d3420f710f5b55c997a2acc568e7
-
SHA512
e5843c18d897fff3f2577bf2d00747fa948d1b85bec23c6072bee4a5551465ae6c53d3ea37b1ca136cd3c4b27d7f8c970f4fedf313f700cf1e9deda21f8a002e
-
SSDEEP
1536:yjYTAN3ivg8m+/AP1jAUxWXhCvOk8JDG:Y9N369m+YP1jAUYXkv5SG
Malware Config
Targets
-
-
Target
f680365dd97dc5b29159644ff9124baa_JaffaCakes118
-
Size
76KB
-
MD5
f680365dd97dc5b29159644ff9124baa
-
SHA1
4ab05750b5a65cc319f36a85f080ef801acca0f8
-
SHA256
ab258e4062c54267fcdd423d4ade8469ded2d3420f710f5b55c997a2acc568e7
-
SHA512
e5843c18d897fff3f2577bf2d00747fa948d1b85bec23c6072bee4a5551465ae6c53d3ea37b1ca136cd3c4b27d7f8c970f4fedf313f700cf1e9deda21f8a002e
-
SSDEEP
1536:yjYTAN3ivg8m+/AP1jAUxWXhCvOk8JDG:Y9N369m+YP1jAUYXkv5SG
Score6/10-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-