General
-
Target
4b5167c1ded8f5a8c389c5dcb6a3841d_JaffaCakes118
-
Size
205KB
-
Sample
241016-elxl6s1hkb
-
MD5
4b5167c1ded8f5a8c389c5dcb6a3841d
-
SHA1
c9c34a8eec7faab524c5afb67112af1f335abd44
-
SHA256
32357476968b4bf480723e2ab2fca63480f04db7b0e8878830c3918c0b34790f
-
SHA512
9f49f98be6a8ce2c02ef8f9e04b58bf7d31b2d1785a24cf7aa377cd836d2b5c948808c29a7ac25a345e20d066cd0bf5c7a03ca703dc03c38a41a1af39fbd9942
-
SSDEEP
6144:oKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWt3RNh:Hq1Z3S2WoJtuXWtBj
Behavioral task
behavioral1
Sample
4b5167c1ded8f5a8c389c5dcb6a3841d_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4b5167c1ded8f5a8c389c5dcb6a3841d_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4b5167c1ded8f5a8c389c5dcb6a3841d_JaffaCakes118
-
Size
205KB
-
MD5
4b5167c1ded8f5a8c389c5dcb6a3841d
-
SHA1
c9c34a8eec7faab524c5afb67112af1f335abd44
-
SHA256
32357476968b4bf480723e2ab2fca63480f04db7b0e8878830c3918c0b34790f
-
SHA512
9f49f98be6a8ce2c02ef8f9e04b58bf7d31b2d1785a24cf7aa377cd836d2b5c948808c29a7ac25a345e20d066cd0bf5c7a03ca703dc03c38a41a1af39fbd9942
-
SSDEEP
6144:oKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWt3RNh:Hq1Z3S2WoJtuXWtBj
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1