General
-
Target
829ae0cc2a6e16f609f4ec1849c00b9e_JaffaCakes118
-
Size
200KB
-
Sample
241031-lhsblswcrj
-
MD5
829ae0cc2a6e16f609f4ec1849c00b9e
-
SHA1
69a382a55a43667ba779ed07637e83046fb6f33a
-
SHA256
7b46b11426ee729474fa5e26e11c93fbcc215a19b53bbf35c3ee0f2df49babce
-
SHA512
40a159c562ea68f92da23a53091095db868dd9de13b38f336eefb0e73bb19a452f68a9d329f06c1d08d596694cf7003e77655444b443fc2cd55b52ec50be8453
-
SSDEEP
6144:W7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfR5xlO9:W78AqbaVcmAo7cGNpwCi+eQZ/lO9
Behavioral task
behavioral1
Sample
829ae0cc2a6e16f609f4ec1849c00b9e_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
829ae0cc2a6e16f609f4ec1849c00b9e_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
829ae0cc2a6e16f609f4ec1849c00b9e_JaffaCakes118
-
Size
200KB
-
MD5
829ae0cc2a6e16f609f4ec1849c00b9e
-
SHA1
69a382a55a43667ba779ed07637e83046fb6f33a
-
SHA256
7b46b11426ee729474fa5e26e11c93fbcc215a19b53bbf35c3ee0f2df49babce
-
SHA512
40a159c562ea68f92da23a53091095db868dd9de13b38f336eefb0e73bb19a452f68a9d329f06c1d08d596694cf7003e77655444b443fc2cd55b52ec50be8453
-
SSDEEP
6144:W7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfR5xlO9:W78AqbaVcmAo7cGNpwCi+eQZ/lO9
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1