Overview

overview

6

Static

static

3

fbf0753988...18.exe

windows7-x64

6

fbf0753988...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fbf0753988f6e278a9766c29de45cecd_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240420-e72s1sgf45

  • MD5

    fbf0753988f6e278a9766c29de45cecd

  • SHA1

    5b88156909882c530235df9ab080d5144543f430

  • SHA256

    e5152e0c6d430377988c326fd4c4da6615bc4d3d6afbac35146513dbec6d142f

  • SHA512

    bfe6d67f86073821db278ca2c20fabebef7007dd49d5ea8f005bf60e24c0d436079dd5365363623e9d4249d65ea3e73d6a4c283358d045bb25f0f53265851094

  • SSDEEP

    49152:SqJP/j515LJzZYy8MoPDMBqPtTe/LEXB8+mJu:Z3j5fhZ52IEPtCTEeY

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      fbf0753988f6e278a9766c29de45cecd_JaffaCakes118

    • Size

      1.6MB

    • MD5

      fbf0753988f6e278a9766c29de45cecd

    • SHA1

      5b88156909882c530235df9ab080d5144543f430

    • SHA256

      e5152e0c6d430377988c326fd4c4da6615bc4d3d6afbac35146513dbec6d142f

    • SHA512

      bfe6d67f86073821db278ca2c20fabebef7007dd49d5ea8f005bf60e24c0d436079dd5365363623e9d4249d65ea3e73d6a4c283358d045bb25f0f53265851094

    • SSDEEP

      49152:SqJP/j515LJzZYy8MoPDMBqPtTe/LEXB8+mJu:Z3j5fhZ52IEPtCTEeY

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks