General
-
Target
4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118
-
Size
20KB
-
Sample
241016-3ggbdsyhmh
-
MD5
4f9af739eacdce8f0718a9c143dda17e
-
SHA1
e126d827664fab5880adc1acc3c2662ce28ac52b
-
SHA256
6da1745755cd6995f1522742516f2e19349528e56e3e8db98e04f5ab6f235153
-
SHA512
c51251f93106c0679c04f2b75e78111e2b359521fc4fdb55655c9402b332d37602256ec77cdbea3ab3f4155398183a63b33dc8e5afcd6a10a62db0645c1255fa
-
SSDEEP
384:nFlBur9q5LyQM3Lur5tFExhk6/cV3zcVcYbPXxF360v9cUnr6P:J6uM7S5tFCk6ErYbZl6TUU
Static task
static1
Behavioral task
behavioral1
Sample
4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4f9af739eacdce8f0718a9c143dda17e_JaffaCakes118
-
Size
20KB
-
MD5
4f9af739eacdce8f0718a9c143dda17e
-
SHA1
e126d827664fab5880adc1acc3c2662ce28ac52b
-
SHA256
6da1745755cd6995f1522742516f2e19349528e56e3e8db98e04f5ab6f235153
-
SHA512
c51251f93106c0679c04f2b75e78111e2b359521fc4fdb55655c9402b332d37602256ec77cdbea3ab3f4155398183a63b33dc8e5afcd6a10a62db0645c1255fa
-
SSDEEP
384:nFlBur9q5LyQM3Lur5tFExhk6/cV3zcVcYbPXxF360v9cUnr6P:J6uM7S5tFCk6ErYbZl6TUU
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-