General
-
Target
49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118
-
Size
205KB
-
Sample
241015-zrb8mswgqa
-
MD5
49f795c5755ad4d5defb01db0100b1b3
-
SHA1
437bb71856a4b56384616711d0198dc43ceaf800
-
SHA256
41d99e1a216f9dc4aff7dc5b3dc6b36c853b8085fa8e1e209508f171155ccbb0
-
SHA512
88862e80f22207c908abaddd2f901ce34f12d23698264fb9feb91b1bfecc80bf33ee8c8f9209a001b6c669eaa6df18c247285f1fc6b5e812e836368357053996
-
SSDEEP
6144:QvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6bA1:QvZ1bge0LMPjpORN8IUk
Behavioral task
behavioral1
Sample
49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
49f795c5755ad4d5defb01db0100b1b3_JaffaCakes118
-
Size
205KB
-
MD5
49f795c5755ad4d5defb01db0100b1b3
-
SHA1
437bb71856a4b56384616711d0198dc43ceaf800
-
SHA256
41d99e1a216f9dc4aff7dc5b3dc6b36c853b8085fa8e1e209508f171155ccbb0
-
SHA512
88862e80f22207c908abaddd2f901ce34f12d23698264fb9feb91b1bfecc80bf33ee8c8f9209a001b6c669eaa6df18c247285f1fc6b5e812e836368357053996
-
SSDEEP
6144:QvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6bA1:QvZ1bge0LMPjpORN8IUk
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1