General
-
Target
4bd1537fede47a0609c817050604d614_JaffaCakes118
-
Size
236KB
-
Sample
241016-hnyh2asdqn
-
MD5
4bd1537fede47a0609c817050604d614
-
SHA1
6b3c11190b191913327498ec3e2b8c7e123562f4
-
SHA256
d6697763cf175496f15b1e88cac2bb3b5e93e350f602c49529ab401f6223879e
-
SHA512
7d9fadbb61b42230c4dd044d438ddead78db2f410c2d57b4ff1c064bbfcab57262f73c731b043e70a0d91363201699b1abc9300e0018c99a9c2594c78c6eff75
-
SSDEEP
3072:2lELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqsJWkTuJyd50FGyZg:d3kOMeaavF17EP6qyqsJW/yPTywUeC5I
Behavioral task
behavioral1
Sample
4bd1537fede47a0609c817050604d614_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4bd1537fede47a0609c817050604d614_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4bd1537fede47a0609c817050604d614_JaffaCakes118
-
Size
236KB
-
MD5
4bd1537fede47a0609c817050604d614
-
SHA1
6b3c11190b191913327498ec3e2b8c7e123562f4
-
SHA256
d6697763cf175496f15b1e88cac2bb3b5e93e350f602c49529ab401f6223879e
-
SHA512
7d9fadbb61b42230c4dd044d438ddead78db2f410c2d57b4ff1c064bbfcab57262f73c731b043e70a0d91363201699b1abc9300e0018c99a9c2594c78c6eff75
-
SSDEEP
3072:2lELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqsJWkTuJyd50FGyZg:d3kOMeaavF17EP6qyqsJW/yPTywUeC5I
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1