General
-
Target
4a76b8532284e1589c9d49be2d48b46b_JaffaCakes118
-
Size
338KB
-
Sample
241015-3cd1gascqb
-
MD5
4a76b8532284e1589c9d49be2d48b46b
-
SHA1
020273e05a6be6af5d996a47e3bcb9309e5aaff3
-
SHA256
820a0d4825733ff7f1624a1005df1415337cc1c9ae7cb2c01bdea9a64f847ecd
-
SHA512
a242b8e6ccfb68df83a3e3a238c2a8d6d90527da5b83dc9f91380f3af27993f88490ebefbc960a898592ac33cff021ab96c2eac5ebe7e2d375d0875e87a1da41
-
SSDEEP
6144:VA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97cMYtfNCTZzKCRUYo4i1+i9BrqgLk:Vjyy64VrDqTWIzW+9YMYtfNEzK8bG/Bk
Behavioral task
behavioral1
Sample
4a76b8532284e1589c9d49be2d48b46b_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4a76b8532284e1589c9d49be2d48b46b_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4a76b8532284e1589c9d49be2d48b46b_JaffaCakes118
-
Size
338KB
-
MD5
4a76b8532284e1589c9d49be2d48b46b
-
SHA1
020273e05a6be6af5d996a47e3bcb9309e5aaff3
-
SHA256
820a0d4825733ff7f1624a1005df1415337cc1c9ae7cb2c01bdea9a64f847ecd
-
SHA512
a242b8e6ccfb68df83a3e3a238c2a8d6d90527da5b83dc9f91380f3af27993f88490ebefbc960a898592ac33cff021ab96c2eac5ebe7e2d375d0875e87a1da41
-
SSDEEP
6144:VA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97cMYtfNCTZzKCRUYo4i1+i9BrqgLk:Vjyy64VrDqTWIzW+9YMYtfNEzK8bG/Bk
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1