General
-
Target
509e468ffc4c180c3975455f2b293b42_JaffaCakes118
-
Size
329KB
-
Sample
241017-ehv9ya1ekb
-
MD5
509e468ffc4c180c3975455f2b293b42
-
SHA1
4db993192f11ac8e7a87ebd588d68566114f4cb1
-
SHA256
209b2b7ac3c3c01617a1cb9a653ed7e94bc2947ad77ef0b2181b2a102dd24613
-
SHA512
3bd584736f805ee619505808d1f8046c587d0ab498a5611604dd56bc854b11fdc0ca4e975cc7fc945b7abc75f671e64bea51fa3c3c7ec76bcfe3bd88da9e4133
-
SSDEEP
6144:pS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUf9qeBnjbUPvBZrT2dG5WnAfT:NE6y66e3N272PYXZf9TjbUPvB5i5nA7
Behavioral task
behavioral1
Sample
509e468ffc4c180c3975455f2b293b42_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
509e468ffc4c180c3975455f2b293b42_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
509e468ffc4c180c3975455f2b293b42_JaffaCakes118
-
Size
329KB
-
MD5
509e468ffc4c180c3975455f2b293b42
-
SHA1
4db993192f11ac8e7a87ebd588d68566114f4cb1
-
SHA256
209b2b7ac3c3c01617a1cb9a653ed7e94bc2947ad77ef0b2181b2a102dd24613
-
SHA512
3bd584736f805ee619505808d1f8046c587d0ab498a5611604dd56bc854b11fdc0ca4e975cc7fc945b7abc75f671e64bea51fa3c3c7ec76bcfe3bd88da9e4133
-
SSDEEP
6144:pS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUf9qeBnjbUPvBZrT2dG5WnAfT:NE6y66e3N272PYXZf9TjbUPvB5i5nA7
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1