General
-
Target
50b125fca62345e63d6d41997d511f0a_JaffaCakes118
-
Size
205KB
-
Sample
241017-e3c9vssbrg
-
MD5
50b125fca62345e63d6d41997d511f0a
-
SHA1
f5da0cf74481ced1d5d490739084602f18ca1cc4
-
SHA256
fe7ff332252b106153ad6ca4ff2cb0463a64130dec7465bf009129eeba423d3e
-
SHA512
e9e4351af08d64f6751638653a6d101dc4f933e96c82d41f0460c3a2b3da8d32a1554a9419cb5cc6ab32b30dbbb9950514800645e00f1e2e9a8025321ccb310f
-
SSDEEP
6144:F0yXtBZbJGMwZdH96WSREd+Y/acdBZBAljQ4CBTVB:F0y9Bu3d9mEQY/rL4xzCBT7
Behavioral task
behavioral1
Sample
50b125fca62345e63d6d41997d511f0a_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
50b125fca62345e63d6d41997d511f0a_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
50b125fca62345e63d6d41997d511f0a_JaffaCakes118
-
Size
205KB
-
MD5
50b125fca62345e63d6d41997d511f0a
-
SHA1
f5da0cf74481ced1d5d490739084602f18ca1cc4
-
SHA256
fe7ff332252b106153ad6ca4ff2cb0463a64130dec7465bf009129eeba423d3e
-
SHA512
e9e4351af08d64f6751638653a6d101dc4f933e96c82d41f0460c3a2b3da8d32a1554a9419cb5cc6ab32b30dbbb9950514800645e00f1e2e9a8025321ccb310f
-
SSDEEP
6144:F0yXtBZbJGMwZdH96WSREd+Y/acdBZBAljQ4CBTVB:F0y9Bu3d9mEQY/rL4xzCBT7
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1