General
-
Target
90f1bc2840596a48305f7ca1c8fcd974_JaffaCakes118
-
Size
686KB
-
Sample
241123-133emsyqhw
-
MD5
90f1bc2840596a48305f7ca1c8fcd974
-
SHA1
5bbb4830243d7dc35b1352397a2712e6ada98d08
-
SHA256
2ed231243932fc7b90845379d25421be606f2b71655c2e854e62ee25fefb9fbb
-
SHA512
5e6ca41befa456e92a1467a05a3ea8502f17dcc32b44ab30b55f5aee11611410facc615b5e868c2200d9cd9af1e87feaabe4efc29e97f55be984d6dc7710ddb1
-
SSDEEP
12288:3mEBTASggJMutz4hDhFEouFeED0NO3yEU8m/udmipauZZZZ37nvEo8uICH8WQpXi:5BTNJMuJ0NovlbSWcXPQg/ooo3/VMI1p
Malware Config
Targets
-
-
Target
90f1bc2840596a48305f7ca1c8fcd974_JaffaCakes118
-
Size
686KB
-
MD5
90f1bc2840596a48305f7ca1c8fcd974
-
SHA1
5bbb4830243d7dc35b1352397a2712e6ada98d08
-
SHA256
2ed231243932fc7b90845379d25421be606f2b71655c2e854e62ee25fefb9fbb
-
SHA512
5e6ca41befa456e92a1467a05a3ea8502f17dcc32b44ab30b55f5aee11611410facc615b5e868c2200d9cd9af1e87feaabe4efc29e97f55be984d6dc7710ddb1
-
SSDEEP
12288:3mEBTASggJMutz4hDhFEouFeED0NO3yEU8m/udmipauZZZZ37nvEo8uICH8WQpXi:5BTNJMuJ0NovlbSWcXPQg/ooo3/VMI1p
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-