General
-
Target
9107d5af038ac8c459a33470737a7898_JaffaCakes118
-
Size
203KB
-
Sample
241123-2gel5aznay
-
MD5
9107d5af038ac8c459a33470737a7898
-
SHA1
d52876001f9edb2dc2357d2c306d264704771301
-
SHA256
e9eab57ea7c0136febc030eaac138a82f91f4143d4b76691aa98b3b5b47af088
-
SHA512
39388e1ee8bb4e8dab3601252b5f89bdfeb5790340e546779ea5365e04619cd9a423f1ca9f981a8594fde5e10a4bab768e6b5e475871f20a7adb5e7d3204d347
-
SSDEEP
3072:S3OOFEyGF17SENOuLYp97YYZG5v5x255ZESOZRzSZZsYaGOYmpghR5VlKr9c+gT8:oiyqRSg03ODx42ZRUZhazuhZlog7877Z
Malware Config
Targets
-
-
Target
9107d5af038ac8c459a33470737a7898_JaffaCakes118
-
Size
203KB
-
MD5
9107d5af038ac8c459a33470737a7898
-
SHA1
d52876001f9edb2dc2357d2c306d264704771301
-
SHA256
e9eab57ea7c0136febc030eaac138a82f91f4143d4b76691aa98b3b5b47af088
-
SHA512
39388e1ee8bb4e8dab3601252b5f89bdfeb5790340e546779ea5365e04619cd9a423f1ca9f981a8594fde5e10a4bab768e6b5e475871f20a7adb5e7d3204d347
-
SSDEEP
3072:S3OOFEyGF17SENOuLYp97YYZG5v5x255ZESOZRzSZZsYaGOYmpghR5VlKr9c+gT8:oiyqRSg03ODx42ZRUZhazuhZlog7877Z
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1