General
-
Target
49cc011d346e8ecde6ae34db7b15995a_JaffaCakes118
-
Size
329KB
-
Sample
241015-yzr4dsyfnn
-
MD5
49cc011d346e8ecde6ae34db7b15995a
-
SHA1
83241656115d3bdcb3336601294a29668ba2a4a6
-
SHA256
615b3efebae04ca135e2be9b81be57639e3eac3ab1103899383554841c5a05d0
-
SHA512
73e13beeb803f3d87422817e8d5123b52c884cae1c0d0af1682d163573ac5952411d38e6cd55c1eb54c46afecb007e1442011ba37264c7a7c4a4d436accd647f
-
SSDEEP
6144:hS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUKfnzCP/fHz/9HdvrV+ot3rMD:VE6y66e3N272PYXZKePnT/99vpVpr4
Behavioral task
behavioral1
Sample
49cc011d346e8ecde6ae34db7b15995a_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
49cc011d346e8ecde6ae34db7b15995a_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
49cc011d346e8ecde6ae34db7b15995a_JaffaCakes118
-
Size
329KB
-
MD5
49cc011d346e8ecde6ae34db7b15995a
-
SHA1
83241656115d3bdcb3336601294a29668ba2a4a6
-
SHA256
615b3efebae04ca135e2be9b81be57639e3eac3ab1103899383554841c5a05d0
-
SHA512
73e13beeb803f3d87422817e8d5123b52c884cae1c0d0af1682d163573ac5952411d38e6cd55c1eb54c46afecb007e1442011ba37264c7a7c4a4d436accd647f
-
SSDEEP
6144:hS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUKfnzCP/fHz/9HdvrV+ot3rMD:VE6y66e3N272PYXZKePnT/99vpVpr4
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1