General
-
Target
39bcf9456bfcb8158f1b4fa241175a2b_JaffaCakes118
-
Size
616KB
-
Sample
241012-ngfbrssdln
-
MD5
39bcf9456bfcb8158f1b4fa241175a2b
-
SHA1
b4a833193f50f64dd9398b4fd60623d8f74231fc
-
SHA256
dcf95a5bfabce250d75678c38ee6b3fc536b667f2d5c23e745f68999d54b5887
-
SHA512
896f37048a6cf93849c06804ebdcbf7c2bd3784912244ea26a098d3c8624992c01126fd9df4550b11847a3991c31875daddb27844c26f528c2176dedae39f67b
-
SSDEEP
12288:qJupwI3iV2ENXh2mqBMi/n+usQe2dG1p0CCbbQrLY8MkK2VmKrLA6Ub:qPI3Q2yh273v+seqG1p07H8MkfVm+Ex
Malware Config
Targets
-
-
Target
39bcf9456bfcb8158f1b4fa241175a2b_JaffaCakes118
-
Size
616KB
-
MD5
39bcf9456bfcb8158f1b4fa241175a2b
-
SHA1
b4a833193f50f64dd9398b4fd60623d8f74231fc
-
SHA256
dcf95a5bfabce250d75678c38ee6b3fc536b667f2d5c23e745f68999d54b5887
-
SHA512
896f37048a6cf93849c06804ebdcbf7c2bd3784912244ea26a098d3c8624992c01126fd9df4550b11847a3991c31875daddb27844c26f528c2176dedae39f67b
-
SSDEEP
12288:qJupwI3iV2ENXh2mqBMi/n+usQe2dG1p0CCbbQrLY8MkK2VmKrLA6Ub:qPI3Q2yh273v+seqG1p07H8MkfVm+Ex
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-