General
-
Target
JaffaCakes118_8adbb7efe9d05e3b8d7944d470cab1b2
-
Size
329KB
-
Sample
250328-vmr13syxdv
-
MD5
8adbb7efe9d05e3b8d7944d470cab1b2
-
SHA1
b7c1624dd72629e618d2e0281d87433de73b9cab
-
SHA256
81b4126b7b6a2dc36e7883eb97379e147c671bbfee71c2c83518d63ffa082eb2
-
SHA512
042753eaf071531e02e16605c72869115e4a05161cbc8c76aa07f7607137205cdb9a4de1a47953eaa1f58b2cafee844da92803d0c6e47e4a84abb9018add849b
-
SSDEEP
6144:nS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrU8rQZTjqyWSrXJOZrqAoGmW:LE6y66e3N272PYXZ8rwTDWAOZeNW
Malware Config
Targets
-
-
Target
JaffaCakes118_8adbb7efe9d05e3b8d7944d470cab1b2
-
Size
329KB
-
MD5
8adbb7efe9d05e3b8d7944d470cab1b2
-
SHA1
b7c1624dd72629e618d2e0281d87433de73b9cab
-
SHA256
81b4126b7b6a2dc36e7883eb97379e147c671bbfee71c2c83518d63ffa082eb2
-
SHA512
042753eaf071531e02e16605c72869115e4a05161cbc8c76aa07f7607137205cdb9a4de1a47953eaa1f58b2cafee844da92803d0c6e47e4a84abb9018add849b
-
SSDEEP
6144:nS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrU8rQZTjqyWSrXJOZrqAoGmW:LE6y66e3N272PYXZ8rwTDWAOZeNW
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1