Overview

overview

7

Static

static

7

4138fc246c...18.exe

windows7-x64

7

4138fc246c...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4138fc246c1342f0a5665967915fdd1a_JaffaCakes118

  • Size

    242KB

  • Sample

    240713-l361haydma

  • MD5

    4138fc246c1342f0a5665967915fdd1a

  • SHA1

    d95f776c786cc69f861aaa068443aa2b7de5a5cd

  • SHA256

    98aaaf7df1c2b8f419be7d7fd4bb55b1de6b2bcb7d93dcc59a531f21c42d9d9d

  • SHA512

    528dd8f18716191b356854c674ea5767cb1481c3711e4ba2ef8814bdff59883b01b0b52a621e39698de1e13831d427b66cbce0f4669dbebbc3164f90248410bb

  • SSDEEP

    6144:EkeENDvTSn2SV/GuhYdViC7X57+nMFFBJaTzNAUPp:ENEND/k/GLPX57+nmjJaTztp

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      4138fc246c1342f0a5665967915fdd1a_JaffaCakes118

    • Size

      242KB

    • MD5

      4138fc246c1342f0a5665967915fdd1a

    • SHA1

      d95f776c786cc69f861aaa068443aa2b7de5a5cd

    • SHA256

      98aaaf7df1c2b8f419be7d7fd4bb55b1de6b2bcb7d93dcc59a531f21c42d9d9d

    • SHA512

      528dd8f18716191b356854c674ea5767cb1481c3711e4ba2ef8814bdff59883b01b0b52a621e39698de1e13831d427b66cbce0f4669dbebbc3164f90248410bb

    • SSDEEP

      6144:EkeENDvTSn2SV/GuhYdViC7X57+nMFFBJaTzNAUPp:ENEND/k/GLPX57+nmjJaTztp

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks