General
-
Target
5029af584e2c11ef39e00f1ab3c57dd2_JaffaCakes118
-
Size
330KB
-
Sample
241017-b2yydsvgla
-
MD5
5029af584e2c11ef39e00f1ab3c57dd2
-
SHA1
b0bca0cd04628d2084c527949b408e2fc8f978c6
-
SHA256
e29c0f1c21d2507be7aeb63ae5901a5f1305adfed551aba2c51ec6e376b52364
-
SHA512
5791f9a80a2bda4e94be04004d35dce5b08381b05a100d326bc65da5e4ed25b308d14c004b8a235081a691752c1f79aa64f52f93d2ffe1f224d4c819bf7e4f94
-
SSDEEP
6144:dS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUTnje3tH6twLibb4chz:xE6y66e3N272PYXZjjWtaO+bb4chz
Behavioral task
behavioral1
Sample
5029af584e2c11ef39e00f1ab3c57dd2_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
5029af584e2c11ef39e00f1ab3c57dd2_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
5029af584e2c11ef39e00f1ab3c57dd2_JaffaCakes118
-
Size
330KB
-
MD5
5029af584e2c11ef39e00f1ab3c57dd2
-
SHA1
b0bca0cd04628d2084c527949b408e2fc8f978c6
-
SHA256
e29c0f1c21d2507be7aeb63ae5901a5f1305adfed551aba2c51ec6e376b52364
-
SHA512
5791f9a80a2bda4e94be04004d35dce5b08381b05a100d326bc65da5e4ed25b308d14c004b8a235081a691752c1f79aa64f52f93d2ffe1f224d4c819bf7e4f94
-
SSDEEP
6144:dS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUTnje3tH6twLibb4chz:xE6y66e3N272PYXZjjWtaO+bb4chz
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1