General
-
Target
50d8c0c639109986c102cd347abcda56_JaffaCakes118
-
Size
327KB
-
Sample
241017-f2aysaxclk
-
MD5
50d8c0c639109986c102cd347abcda56
-
SHA1
e9a0505e0a23d7ce6307d114e3b07ae78776fc1f
-
SHA256
d612b778d2e5d75444703bdde0a68194cf297153f4061141419f09c7766a190f
-
SHA512
dd0817747501a135560fd450bb3a2d44434601a29c74d5323149ae2fef36e25edf7a61fc03126ba94da19f0074d7fc83103c8442c11ab558114cb5d1d3eec9fe
-
SSDEEP
6144:NeXA47CURW+eirtnIwE0XzBTjrBLt4smgZT0ndxdeEqQ50jv780oq1aU1bjLQs+:NeXv7tRWwnIKBTjx6smgqnCD8LUaU1bG
Behavioral task
behavioral1
Sample
50d8c0c639109986c102cd347abcda56_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
50d8c0c639109986c102cd347abcda56_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
50d8c0c639109986c102cd347abcda56_JaffaCakes118
-
Size
327KB
-
MD5
50d8c0c639109986c102cd347abcda56
-
SHA1
e9a0505e0a23d7ce6307d114e3b07ae78776fc1f
-
SHA256
d612b778d2e5d75444703bdde0a68194cf297153f4061141419f09c7766a190f
-
SHA512
dd0817747501a135560fd450bb3a2d44434601a29c74d5323149ae2fef36e25edf7a61fc03126ba94da19f0074d7fc83103c8442c11ab558114cb5d1d3eec9fe
-
SSDEEP
6144:NeXA47CURW+eirtnIwE0XzBTjrBLt4smgZT0ndxdeEqQ50jv780oq1aU1bjLQs+:NeXv7tRWwnIKBTjx6smgqnCD8LUaU1bG
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1