General
-
Target
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118
-
Size
205KB
-
Sample
241016-csqfbsxgkh
-
MD5
4b00a4c51d0c752ed134b2145553ab45
-
SHA1
95e628b01d0c66eae010d0c7a3c2c513e816d607
-
SHA256
f9903057fe32662e3cd48f64fba7172ac08523f52771c5a5ae8b6df2c58b8bc4
-
SHA512
cff7fdecfcc14a4dce77d3b0454df12c3d98347be6afc4da0683735f1e8ce8c147a1fca9f5f4f1bc869272f5eb1636b244464ee323088d9c23641ee819a0c2f8
-
SSDEEP
6144:/vZ2IZbgekfZLlGGKZp+s8ohYRNudNI6SCG6abNB:/vZ1bge0LMPjpORN8INC7axB
Behavioral task
behavioral1
Sample
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118
-
Size
205KB
-
MD5
4b00a4c51d0c752ed134b2145553ab45
-
SHA1
95e628b01d0c66eae010d0c7a3c2c513e816d607
-
SHA256
f9903057fe32662e3cd48f64fba7172ac08523f52771c5a5ae8b6df2c58b8bc4
-
SHA512
cff7fdecfcc14a4dce77d3b0454df12c3d98347be6afc4da0683735f1e8ce8c147a1fca9f5f4f1bc869272f5eb1636b244464ee323088d9c23641ee819a0c2f8
-
SSDEEP
6144:/vZ2IZbgekfZLlGGKZp+s8ohYRNudNI6SCG6abNB:/vZ1bge0LMPjpORN8INC7axB
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1