General
-
Target
4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118
-
Size
20KB
-
Sample
241016-g9vhtsxbrc
-
MD5
4bc30b1f4eba500f16b1f9d5143f21f1
-
SHA1
065dde7f37d919288397ccb7ca91a2994b2a08d5
-
SHA256
ce1b4d2010fb7b334abb404f3070d489b5679bb2b60461c7ef46b53c74122440
-
SHA512
a08fc7b810cae1e04788f8f075dc5352a5f60694a8350581c07128e2d48101d74eeb76fbd130e7c633d26ad137f1067cc4bed7c3f2851d8e47939ce0f269eb5e
-
SSDEEP
384:rwzX3qOAdlbeyc8YBoG+WOzKvMv+Oe60bKDCI9QxZPuY:sD+dlbeyuojWkLe6XCI9eB
Static task
static1
Behavioral task
behavioral1
Sample
4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4bc30b1f4eba500f16b1f9d5143f21f1_JaffaCakes118
-
Size
20KB
-
MD5
4bc30b1f4eba500f16b1f9d5143f21f1
-
SHA1
065dde7f37d919288397ccb7ca91a2994b2a08d5
-
SHA256
ce1b4d2010fb7b334abb404f3070d489b5679bb2b60461c7ef46b53c74122440
-
SHA512
a08fc7b810cae1e04788f8f075dc5352a5f60694a8350581c07128e2d48101d74eeb76fbd130e7c633d26ad137f1067cc4bed7c3f2851d8e47939ce0f269eb5e
-
SSDEEP
384:rwzX3qOAdlbeyc8YBoG+WOzKvMv+Oe60bKDCI9QxZPuY:sD+dlbeyuojWkLe6XCI9eB
Score6/10-
Program crash
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-