General
-
Target
4b8fa7a38ce24290465febf99b2b053f_JaffaCakes118
-
Size
330KB
-
Sample
241016-fzpddsydqm
-
MD5
4b8fa7a38ce24290465febf99b2b053f
-
SHA1
cbb7419f87705183ce73c8bdbfcfd8be948062c5
-
SHA256
24782631f15de3ea0d6146f6f2678761ee0bfef482438ff8ee62b944819e5fba
-
SHA512
2ebb749c1ecff9cf4f01e7159ce04c41d75dbf5dfd054384906e49b41c5732c65c0bfe5c5be4790ba732f0d13285a8d498684f7f536671ed45398074ff758287
-
SSDEEP
6144:hS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUqfT1Kf6fRXmGcMk:VE6y66e3N272PYXZqb1dfRgP
Behavioral task
behavioral1
Sample
4b8fa7a38ce24290465febf99b2b053f_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4b8fa7a38ce24290465febf99b2b053f_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4b8fa7a38ce24290465febf99b2b053f_JaffaCakes118
-
Size
330KB
-
MD5
4b8fa7a38ce24290465febf99b2b053f
-
SHA1
cbb7419f87705183ce73c8bdbfcfd8be948062c5
-
SHA256
24782631f15de3ea0d6146f6f2678761ee0bfef482438ff8ee62b944819e5fba
-
SHA512
2ebb749c1ecff9cf4f01e7159ce04c41d75dbf5dfd054384906e49b41c5732c65c0bfe5c5be4790ba732f0d13285a8d498684f7f536671ed45398074ff758287
-
SSDEEP
6144:hS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUqfT1Kf6fRXmGcMk:VE6y66e3N272PYXZqb1dfRgP
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1