General
-
Target
ff67c89b3ccd00a77d8af8b9ffd67577_JaffaCakes118
-
Size
202KB
-
Sample
240929-2gqz6atbrr
-
MD5
ff67c89b3ccd00a77d8af8b9ffd67577
-
SHA1
5f63e3800d108d4f1a5eb9e7f0dc743670ba3490
-
SHA256
4559f3bdec776a7578af1c92eef0acde8171989691b2c40fef0b57d2b7d406fe
-
SHA512
489afb46b982391eac3d467698b4c88beb4e85d89e0b67b4b8f7b3e5ff1a29dcbbac1d9417f64dc3d924fb1fb6d35f4b4539cabf4cc3fcec6eee17d3832fbf09
-
SSDEEP
3072:VaZbQ13B5+yf+2X9w8uirAumn400Agvps+jkEdNWhoRV0QF2Mt27zGD73dVHZ:ENY5722X5cj4004+F4e0QF2Mt27zG33N
Malware Config
Targets
-
-
Target
ff67c89b3ccd00a77d8af8b9ffd67577_JaffaCakes118
-
Size
202KB
-
MD5
ff67c89b3ccd00a77d8af8b9ffd67577
-
SHA1
5f63e3800d108d4f1a5eb9e7f0dc743670ba3490
-
SHA256
4559f3bdec776a7578af1c92eef0acde8171989691b2c40fef0b57d2b7d406fe
-
SHA512
489afb46b982391eac3d467698b4c88beb4e85d89e0b67b4b8f7b3e5ff1a29dcbbac1d9417f64dc3d924fb1fb6d35f4b4539cabf4cc3fcec6eee17d3832fbf09
-
SSDEEP
3072:VaZbQ13B5+yf+2X9w8uirAumn400Agvps+jkEdNWhoRV0QF2Mt27zGD73dVHZ:ENY5722X5cj4004+F4e0QF2Mt27zG33N
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1