Overview

overview

7

Static

static

7

eba056d476...18.exe

windows7-x64

7

eba056d476...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    eba056d476390db9a10f40149a638544_JaffaCakes118

  • Size

    341KB

  • Sample

    240410-v722safb36

  • MD5

    eba056d476390db9a10f40149a638544

  • SHA1

    dad5aeb72cf40bb623f5237e3a72bac71ff1368f

  • SHA256

    9856e9ab8e4565cbe82dcc23fe902529fb5112369151155f9b9c0d1c7f2f2b89

  • SHA512

    987f12591ba8427471be0c545f62dc913a9bf6b09b10ef06e0d87154433f99f1a615db35be750a1a0660b08df611c582ebd54f85570a7b456be799209f23d0a6

  • SSDEEP

    6144:0fZ/nwzIhoZib9i0ju9BKVoEZUWzeUdiWxcX+zjIp1dkeW8:0fpPOZiBiq3zxzeYxcuz4kn8

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      eba056d476390db9a10f40149a638544_JaffaCakes118

    • Size

      341KB

    • MD5

      eba056d476390db9a10f40149a638544

    • SHA1

      dad5aeb72cf40bb623f5237e3a72bac71ff1368f

    • SHA256

      9856e9ab8e4565cbe82dcc23fe902529fb5112369151155f9b9c0d1c7f2f2b89

    • SHA512

      987f12591ba8427471be0c545f62dc913a9bf6b09b10ef06e0d87154433f99f1a615db35be750a1a0660b08df611c582ebd54f85570a7b456be799209f23d0a6

    • SSDEEP

      6144:0fZ/nwzIhoZib9i0ju9BKVoEZUWzeUdiWxcX+zjIp1dkeW8:0fpPOZiBiq3zxzeYxcuz4kn8

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks