General
-
Target
505f40a8abf2de59ea8a3f6c0e6cbbdb_JaffaCakes118
-
Size
337KB
-
Sample
241017-c3gk6s1gjp
-
MD5
505f40a8abf2de59ea8a3f6c0e6cbbdb
-
SHA1
9b4dedff031a71532c5ac692fe08a73f0b02d5d8
-
SHA256
9657321ad440b2f7f7e6c94918f7c60840cf89bbd81169a6a46f2d4a405ea404
-
SHA512
19c4b710db65b14119477aea9e998a078abf80889c9b80da3610637d82d785577a85ee27eba9ae9a5786043b01450b0334a41c158a2e6b6bb2ccb057a09385af
-
SSDEEP
6144:BS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUlG2f5T2kiP+FTJ2ImVbdqFw:1E6y66e3N272PYXZlGoBE2FTJVOwFw
Behavioral task
behavioral1
Sample
505f40a8abf2de59ea8a3f6c0e6cbbdb_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
505f40a8abf2de59ea8a3f6c0e6cbbdb_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
505f40a8abf2de59ea8a3f6c0e6cbbdb_JaffaCakes118
-
Size
337KB
-
MD5
505f40a8abf2de59ea8a3f6c0e6cbbdb
-
SHA1
9b4dedff031a71532c5ac692fe08a73f0b02d5d8
-
SHA256
9657321ad440b2f7f7e6c94918f7c60840cf89bbd81169a6a46f2d4a405ea404
-
SHA512
19c4b710db65b14119477aea9e998a078abf80889c9b80da3610637d82d785577a85ee27eba9ae9a5786043b01450b0334a41c158a2e6b6bb2ccb057a09385af
-
SSDEEP
6144:BS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUlG2f5T2kiP+FTJ2ImVbdqFw:1E6y66e3N272PYXZlGoBE2FTJVOwFw
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1