Overview

overview

7

Static

static

7

2f354e6704...18.exe

windows7-x64

7

2f354e6704...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f354e6704d8f4cec265ad95f82c0921_JaffaCakes118

  • Size

    475KB

  • Sample

    240709-gl4rlayfqp

  • MD5

    2f354e6704d8f4cec265ad95f82c0921

  • SHA1

    a8122c1bb304fc1b49fb735db5a926d455f5dbd2

  • SHA256

    9c826cddb04cae03d4e1dcfb9b45c8a7bf6941340cbe02422118b68dcd185633

  • SHA512

    d9689d72dcc828081137fb726d966a7332eb881b8a007bdc1db8628cb080097a1b79a20fdb64940fac69f683ae19769bb782741de6e7dc1441073050b16dc059

  • SSDEEP

    12288:I7HQhWI2TmvDtUiGpc/MeFXmC6+RVA74oG:eHQhWI2TmvDtUi0c/MeFXd6+RVfoG

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      2f354e6704d8f4cec265ad95f82c0921_JaffaCakes118

    • Size

      475KB

    • MD5

      2f354e6704d8f4cec265ad95f82c0921

    • SHA1

      a8122c1bb304fc1b49fb735db5a926d455f5dbd2

    • SHA256

      9c826cddb04cae03d4e1dcfb9b45c8a7bf6941340cbe02422118b68dcd185633

    • SHA512

      d9689d72dcc828081137fb726d966a7332eb881b8a007bdc1db8628cb080097a1b79a20fdb64940fac69f683ae19769bb782741de6e7dc1441073050b16dc059

    • SSDEEP

      12288:I7HQhWI2TmvDtUiGpc/MeFXmC6+RVA74oG:eHQhWI2TmvDtUi0c/MeFXd6+RVfoG

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks