General
-
Target
4f523f8d875eca608e5fdb2f0499c336_JaffaCakes118
-
Size
241KB
-
Sample
241016-17dl3swcnd
-
MD5
4f523f8d875eca608e5fdb2f0499c336
-
SHA1
d649ec424e4c50932b2a4026583ddb83bc77efd9
-
SHA256
3505efbc5e68246d8c30b74bf13a3b80bf2517fd3c1728d77cb9deb17c1c4306
-
SHA512
73204dd608361a144f19c5d505c68b4380f3c6def373fce82e356df40b6585628386a30ed1ce164072a19dde8519d375ea7aca37848df7156d2fe190fe0e159e
-
SSDEEP
6144:F7n5WPqr2GTsNs7tbYvAWjVYjAmAcV7aklBnDGJ5vDt:F7n5WPqFsNU8XV2PaklBnD6Dt
Behavioral task
behavioral1
Sample
4f523f8d875eca608e5fdb2f0499c336_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4f523f8d875eca608e5fdb2f0499c336_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4f523f8d875eca608e5fdb2f0499c336_JaffaCakes118
-
Size
241KB
-
MD5
4f523f8d875eca608e5fdb2f0499c336
-
SHA1
d649ec424e4c50932b2a4026583ddb83bc77efd9
-
SHA256
3505efbc5e68246d8c30b74bf13a3b80bf2517fd3c1728d77cb9deb17c1c4306
-
SHA512
73204dd608361a144f19c5d505c68b4380f3c6def373fce82e356df40b6585628386a30ed1ce164072a19dde8519d375ea7aca37848df7156d2fe190fe0e159e
-
SSDEEP
6144:F7n5WPqr2GTsNs7tbYvAWjVYjAmAcV7aklBnDGJ5vDt:F7n5WPqFsNU8XV2PaklBnD6Dt
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1