General
-
Target
b19570295774aa59a8ffb4849aa18735_JaffaCakes118
-
Size
580KB
-
Sample
241129-qxmrwsspgl
-
MD5
b19570295774aa59a8ffb4849aa18735
-
SHA1
5aba19cbfe74b7b1992d1f85da0dd550753b5e3a
-
SHA256
f38484003e400719dfbeaab61d2404796a98aaa4c9f9c975e7dca49b612130d6
-
SHA512
dae4895ec6afa4d3665fbf1b8f84c3083580a346b7ec7b00e730fb21ae264a058e8a4074f843663264ff50ae336ed296b0259d178f79766652d31a2a59dd0fff
-
SSDEEP
12288:XQ5Tw3W1SXMe7tYm7CoaUAp/0vI4jkAEzs4k65j+oy5asIjkOSIb7xLXfCJ4:X0w3MSt7tKIe2I4fcsVO+oI3Ijkj47xj
Malware Config
Targets
-
-
Target
b19570295774aa59a8ffb4849aa18735_JaffaCakes118
-
Size
580KB
-
MD5
b19570295774aa59a8ffb4849aa18735
-
SHA1
5aba19cbfe74b7b1992d1f85da0dd550753b5e3a
-
SHA256
f38484003e400719dfbeaab61d2404796a98aaa4c9f9c975e7dca49b612130d6
-
SHA512
dae4895ec6afa4d3665fbf1b8f84c3083580a346b7ec7b00e730fb21ae264a058e8a4074f843663264ff50ae336ed296b0259d178f79766652d31a2a59dd0fff
-
SSDEEP
12288:XQ5Tw3W1SXMe7tYm7CoaUAp/0vI4jkAEzs4k65j+oy5asIjkOSIb7xLXfCJ4:X0w3MSt7tKIe2I4fcsVO+oI3Ijkj47xj
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-