Overview

overview

7

Static

static

7

7135427867...18.dll

windows7-x64

6

7135427867...18.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    71354278675a4deea20fb3cbb5f77170_JaffaCakes118

  • Size

    740KB

  • Sample

    240525-hxpx9aab41

  • MD5

    71354278675a4deea20fb3cbb5f77170

  • SHA1

    073e9f1db6c1be847f186553e985e35e4de03c70

  • SHA256

    7b6acb5e2c245b8cfda77fced2cc0e94108384cd1b9ffc8510e7304fcb9feb6c

  • SHA512

    e664f02f2d2918c30a6fb75ab7dfe22ab0f2eea8e7ebbcd5b211463062744e51e3956d320127570db0b5dc9c12fb39c6b204bc2967bd4708bccab17d5c980915

  • SSDEEP

    12288:NRJ6OytWOdpAFN0i2J+twkFFNQXNxE+VOvQ3tKDuztSVPXQdlO3BuOmuVbAA/IFv:ND7rO7qNp2gNQ9xqkYDWYPgiEdgAA/VS

Score
7/10
aspackv2bootkitpersistence

Malware Config

Targets

    • Target

      71354278675a4deea20fb3cbb5f77170_JaffaCakes118

    • Size

      740KB

    • MD5

      71354278675a4deea20fb3cbb5f77170

    • SHA1

      073e9f1db6c1be847f186553e985e35e4de03c70

    • SHA256

      7b6acb5e2c245b8cfda77fced2cc0e94108384cd1b9ffc8510e7304fcb9feb6c

    • SHA512

      e664f02f2d2918c30a6fb75ab7dfe22ab0f2eea8e7ebbcd5b211463062744e51e3956d320127570db0b5dc9c12fb39c6b204bc2967bd4708bccab17d5c980915

    • SSDEEP

      12288:NRJ6OytWOdpAFN0i2J+twkFFNQXNxE+VOvQ3tKDuztSVPXQdlO3BuOmuVbAA/IFv:ND7rO7qNp2gNQ9xqkYDWYPgiEdgAA/VS

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks