Overview

overview

7

Static

static

7

2106657e94...18.exe

windows7-x64

7

2106657e94...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2106657e94e77edeee80d8141be28462_JaffaCakes118

  • Size

    316KB

  • Sample

    240703-epv8hswhjb

  • MD5

    2106657e94e77edeee80d8141be28462

  • SHA1

    2c1f22be805dd08961b0b0ab7ebb31804ec9c808

  • SHA256

    7531ecd356b049d62201343b5824f034280db3d815af4959d4b57cffa6845a2b

  • SHA512

    ad5165a7709f8e29d24411ca9b9a7954983d48f37d82a5a46f63ace3403ba5a8e1bdb430c94b4356a7a6a352cff4529b7c4bb59a2b0298ed09182d0e7f010109

  • SSDEEP

    6144:jJiMpm+TDRlPswEvuB5xJRCSIVnuewQ7hpg15Foj5E1OcPX0FRR2EDUvGSI1WaAt:j42vRlPsBvmxzC/GQVpWjojy1OcP0Fqh

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      2106657e94e77edeee80d8141be28462_JaffaCakes118

    • Size

      316KB

    • MD5

      2106657e94e77edeee80d8141be28462

    • SHA1

      2c1f22be805dd08961b0b0ab7ebb31804ec9c808

    • SHA256

      7531ecd356b049d62201343b5824f034280db3d815af4959d4b57cffa6845a2b

    • SHA512

      ad5165a7709f8e29d24411ca9b9a7954983d48f37d82a5a46f63ace3403ba5a8e1bdb430c94b4356a7a6a352cff4529b7c4bb59a2b0298ed09182d0e7f010109

    • SSDEEP

      6144:jJiMpm+TDRlPswEvuB5xJRCSIVnuewQ7hpg15Foj5E1OcPX0FRR2EDUvGSI1WaAt:j42vRlPsBvmxzC/GQVpWjojy1OcP0Fqh

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks