General
-
Target
b156649801ca3a3589bc0cbbc844e275_JaffaCakes118
-
Size
330KB
-
Sample
241129-p13f3s1kbp
-
MD5
b156649801ca3a3589bc0cbbc844e275
-
SHA1
45f38d1c591981ea9018f7d40b68a9257e65a888
-
SHA256
df548630acf3d800755d94ddb2ce1d522bab7eb65104d20d881ec5a7318e6834
-
SHA512
5892c31bacc2bcb379d4c47168c517fed05ad21c5b5cdf8ce2623d760e95c842d3372826dbb945270ae84603d78726f87e0b2eb49cc4d01c8705ae36cf6f34fc
-
SSDEEP
6144:jS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrU6zjlfFrWQQlB9xJ2jAqU0F/:XE6y66e3N272PYXZ6nlt98BfJ2UG
Malware Config
Targets
-
-
Target
b156649801ca3a3589bc0cbbc844e275_JaffaCakes118
-
Size
330KB
-
MD5
b156649801ca3a3589bc0cbbc844e275
-
SHA1
45f38d1c591981ea9018f7d40b68a9257e65a888
-
SHA256
df548630acf3d800755d94ddb2ce1d522bab7eb65104d20d881ec5a7318e6834
-
SHA512
5892c31bacc2bcb379d4c47168c517fed05ad21c5b5cdf8ce2623d760e95c842d3372826dbb945270ae84603d78726f87e0b2eb49cc4d01c8705ae36cf6f34fc
-
SSDEEP
6144:jS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrU6zjlfFrWQQlB9xJ2jAqU0F/:XE6y66e3N272PYXZ6nlt98BfJ2UG
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1