General
-
Target
49be16c7b06a1352b19b37969dafd751_JaffaCakes118
-
Size
228KB
-
Sample
241015-yrczhatgqb
-
MD5
49be16c7b06a1352b19b37969dafd751
-
SHA1
9c748731ed90382c4eadeb493db17ebe79323cd5
-
SHA256
c1356cd575fc2d6592d5b05422966e128fa6d8a860c0b8efde40a4a7157cab2d
-
SHA512
24ea0e55d0fb106336b359c4026a965b3df731028c9cfba85713a073c1795fb303b6d1f7a1caa27aeed192e89726844b81fbf61a69baa49b196283c89b3110ce
-
SSDEEP
3072:8QfRqdESOA7VLn3WVhTDURKYNOI7IZKVTT4h2UBmsWr3uAN/SB7lG1HRqmM0GYwA:HbizmVhTAgZKR4wpr3N/SC1HRqmM0GxA
Behavioral task
behavioral1
Sample
49be16c7b06a1352b19b37969dafd751_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
49be16c7b06a1352b19b37969dafd751_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
49be16c7b06a1352b19b37969dafd751_JaffaCakes118
-
Size
228KB
-
MD5
49be16c7b06a1352b19b37969dafd751
-
SHA1
9c748731ed90382c4eadeb493db17ebe79323cd5
-
SHA256
c1356cd575fc2d6592d5b05422966e128fa6d8a860c0b8efde40a4a7157cab2d
-
SHA512
24ea0e55d0fb106336b359c4026a965b3df731028c9cfba85713a073c1795fb303b6d1f7a1caa27aeed192e89726844b81fbf61a69baa49b196283c89b3110ce
-
SSDEEP
3072:8QfRqdESOA7VLn3WVhTDURKYNOI7IZKVTT4h2UBmsWr3uAN/SB7lG1HRqmM0GYwA:HbizmVhTAgZKR4wpr3N/SC1HRqmM0GxA
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1