Overview

overview

7

Static

static

3

2355d53b6c...18.exe

windows7-x64

7

2355d53b6c...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2355d53b6c74d4f82caece8f581c677c_JaffaCakes118

  • Size

    3.9MB

  • Sample

    240703-w4depasbkn

  • MD5

    2355d53b6c74d4f82caece8f581c677c

  • SHA1

    1283382c240f1de20ebdef88777c5a730d474804

  • SHA256

    f48167ca066052f30743f28b8b07941aeef91f93c677460545c9a34395196f03

  • SHA512

    45d135874cbaad555eb430825ca0510774ae0d5a3646f7c1e331fa44f7f1d7ff0b346e5e5f7ac6d56275bf083f33f9c251b81eed96c614f8857976d78b65d55e

  • SSDEEP

    98304:kDDqF5y5Z749uqDODECL/stieg3iIyCwD/:TF58cDODECL/soeqi3B/

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      2355d53b6c74d4f82caece8f581c677c_JaffaCakes118

    • Size

      3.9MB

    • MD5

      2355d53b6c74d4f82caece8f581c677c

    • SHA1

      1283382c240f1de20ebdef88777c5a730d474804

    • SHA256

      f48167ca066052f30743f28b8b07941aeef91f93c677460545c9a34395196f03

    • SHA512

      45d135874cbaad555eb430825ca0510774ae0d5a3646f7c1e331fa44f7f1d7ff0b346e5e5f7ac6d56275bf083f33f9c251b81eed96c614f8857976d78b65d55e

    • SSDEEP

      98304:kDDqF5y5Z749uqDODECL/stieg3iIyCwD/:TF58cDODECL/soeqi3B/

    Score
    7/10
    bootkitpersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks