General
-
Target
82b07906106a8d2a5bf1df1f98e4d847_JaffaCakes118
-
Size
329KB
-
Sample
241031-l4bkzswekd
-
MD5
82b07906106a8d2a5bf1df1f98e4d847
-
SHA1
3600307850f4d6c3e6276f7d3b3afe084013e25d
-
SHA256
b9a2bd3697b875f8cc3f07e6851b3aec5eb1cf4999e4f2143f42b8189c102e1c
-
SHA512
c07d13e8c28b43b3415482db7f39007d317875bbba6bc77dae3512fafba7ea1400a63db56c0eecd9966d452b6875bb515e02e1703a253aab4b208ffffac6e19c
-
SSDEEP
6144:DePJYhcvhLxotp++sCTHUIKz3JWGYBjWo8kr7n+tdjrPOi5yFT:DePJYIh9of++skOYBjDfr7UdPOisFT
Behavioral task
behavioral1
Sample
82b07906106a8d2a5bf1df1f98e4d847_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
82b07906106a8d2a5bf1df1f98e4d847_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
82b07906106a8d2a5bf1df1f98e4d847_JaffaCakes118
-
Size
329KB
-
MD5
82b07906106a8d2a5bf1df1f98e4d847
-
SHA1
3600307850f4d6c3e6276f7d3b3afe084013e25d
-
SHA256
b9a2bd3697b875f8cc3f07e6851b3aec5eb1cf4999e4f2143f42b8189c102e1c
-
SHA512
c07d13e8c28b43b3415482db7f39007d317875bbba6bc77dae3512fafba7ea1400a63db56c0eecd9966d452b6875bb515e02e1703a253aab4b208ffffac6e19c
-
SSDEEP
6144:DePJYhcvhLxotp++sCTHUIKz3JWGYBjWo8kr7n+tdjrPOi5yFT:DePJYIh9of++skOYBjDfr7UdPOisFT
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1