Overview

overview

7

Static

static

7

3bb717a333...18.exe

windows7-x64

7

3bb717a333...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3bb717a3337c42a8cbacb8e4fafbda4f_JaffaCakes118

  • Size

    236KB

  • Sample

    240712-dae3baxhkh

  • MD5

    3bb717a3337c42a8cbacb8e4fafbda4f

  • SHA1

    0a33e4ea43e938399559faa3db55082c82c923bc

  • SHA256

    10274b83214faa48f26961336ee58cbcd2001dc1540d2baac3d0922321e995a7

  • SHA512

    b6a21df7cd37b557e01e2599ec8ac56f3047b6b49deb477ceb955e3ac6efbcb9e9ab52d729a4edcf91cf7f898285a20144881b830e44bb5dc053a9a4cc709aa8

  • SSDEEP

    3072:nlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqslqB07llcvzW02t:E3kOMeaavF17EP6qyqsU0KOt

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      3bb717a3337c42a8cbacb8e4fafbda4f_JaffaCakes118

    • Size

      236KB

    • MD5

      3bb717a3337c42a8cbacb8e4fafbda4f

    • SHA1

      0a33e4ea43e938399559faa3db55082c82c923bc

    • SHA256

      10274b83214faa48f26961336ee58cbcd2001dc1540d2baac3d0922321e995a7

    • SHA512

      b6a21df7cd37b557e01e2599ec8ac56f3047b6b49deb477ceb955e3ac6efbcb9e9ab52d729a4edcf91cf7f898285a20144881b830e44bb5dc053a9a4cc709aa8

    • SSDEEP

      3072:nlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqslqB07llcvzW02t:E3kOMeaavF17EP6qyqsU0KOt

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks