General
-
Target
JaffaCakes118_1e6341a583bfbd57e8b37e84fdd5df77
-
Size
236KB
-
Sample
250706-f8s3yaar3t
-
MD5
1e6341a583bfbd57e8b37e84fdd5df77
-
SHA1
98c35d9bf62112c8b52663acd176773cd9f8f9d4
-
SHA256
ff4b865882f84c58265623ee2e506531c11d83d4eaec1193962f9cf6bbd8febe
-
SHA512
1f45de45612c960bbef3caa5bc5c91bcd18f93a6a7504699e964ec5831763c3bfb3ef18111ca7a37cb8fdf2692f2940bd6364836e1e65011ab9534e3ea050893
-
SSDEEP
3072:FlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8Pyqsn1PB4IedbOsNjD4:O3kOMeaavF17EP6qyqs1pqVOsHkvlX
Malware Config
Targets
-
-
Target
JaffaCakes118_1e6341a583bfbd57e8b37e84fdd5df77
-
Size
236KB
-
MD5
1e6341a583bfbd57e8b37e84fdd5df77
-
SHA1
98c35d9bf62112c8b52663acd176773cd9f8f9d4
-
SHA256
ff4b865882f84c58265623ee2e506531c11d83d4eaec1193962f9cf6bbd8febe
-
SHA512
1f45de45612c960bbef3caa5bc5c91bcd18f93a6a7504699e964ec5831763c3bfb3ef18111ca7a37cb8fdf2692f2940bd6364836e1e65011ab9534e3ea050893
-
SSDEEP
3072:FlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8Pyqsn1PB4IedbOsNjD4:O3kOMeaavF17EP6qyqs1pqVOsHkvlX
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v16
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1