General
-
Target
506be690d997bb40952e2878a8b7e29d_JaffaCakes118
-
Size
200KB
-
Sample
241017-dcfrmascnn
-
MD5
506be690d997bb40952e2878a8b7e29d
-
SHA1
1c44bc6c560216e3f0371d51eca1f1215c11e413
-
SHA256
6797b6899d0e2d132e7b6cafc7aa0bc1a6e982de0551df50ea2235a3bae5368a
-
SHA512
c7429e623b45567bd0a0dbfe997d6a20bc89036f5d078149c5c6aa16aa08e344a7e8a728e18438bae342923f6f26c07826e1639eaf7e2cfbb5cfc0010d1d65e7
-
SSDEEP
6144:B7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfRyJE7mJszT:B78AqbaVcmAo7cGNpwCi+eQZN7uszT
Behavioral task
behavioral1
Sample
506be690d997bb40952e2878a8b7e29d_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
506be690d997bb40952e2878a8b7e29d_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
506be690d997bb40952e2878a8b7e29d_JaffaCakes118
-
Size
200KB
-
MD5
506be690d997bb40952e2878a8b7e29d
-
SHA1
1c44bc6c560216e3f0371d51eca1f1215c11e413
-
SHA256
6797b6899d0e2d132e7b6cafc7aa0bc1a6e982de0551df50ea2235a3bae5368a
-
SHA512
c7429e623b45567bd0a0dbfe997d6a20bc89036f5d078149c5c6aa16aa08e344a7e8a728e18438bae342923f6f26c07826e1639eaf7e2cfbb5cfc0010d1d65e7
-
SSDEEP
6144:B7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfRyJE7mJszT:B78AqbaVcmAo7cGNpwCi+eQZN7uszT
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1