General
-
Target
4bd008ddc9aa248aac58b8654635363b_JaffaCakes118
-
Size
338KB
-
Sample
241016-hmsldsxgpg
-
MD5
4bd008ddc9aa248aac58b8654635363b
-
SHA1
77d20e6afa1a825b1f36ebafaa3ceb767b9c4277
-
SHA256
06023221d97122cba8bf32ebb7726ffd104a5c1ce4dd46c4361ad6d6f3129499
-
SHA512
45c884768726140eb9da47a11f969809aaa6684b17a93cb45bc318d5c07ead3384b1ff51c1c9c04abc4d89ee198d6c5981b0700054d195d00e946dfc4938e3e9
-
SSDEEP
6144:sSA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97cw02S1k0ZkczXcwLUW66B3X3Y/:hjyy64VrDqTWIzW+9Yw07PvbbwWlB34/
Behavioral task
behavioral1
Sample
4bd008ddc9aa248aac58b8654635363b_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4bd008ddc9aa248aac58b8654635363b_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4bd008ddc9aa248aac58b8654635363b_JaffaCakes118
-
Size
338KB
-
MD5
4bd008ddc9aa248aac58b8654635363b
-
SHA1
77d20e6afa1a825b1f36ebafaa3ceb767b9c4277
-
SHA256
06023221d97122cba8bf32ebb7726ffd104a5c1ce4dd46c4361ad6d6f3129499
-
SHA512
45c884768726140eb9da47a11f969809aaa6684b17a93cb45bc318d5c07ead3384b1ff51c1c9c04abc4d89ee198d6c5981b0700054d195d00e946dfc4938e3e9
-
SSDEEP
6144:sSA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97cw02S1k0ZkczXcwLUW66B3X3Y/:hjyy64VrDqTWIzW+9Yw07PvbbwWlB34/
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1