Overview

overview

7

Static

static

7

4547a8c15b...18.exe

windows7-x64

7

4547a8c15b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4547a8c15b1813e6d8c3f740a55c267f_JaffaCakes118

  • Size

    448KB

  • Sample

    240714-lpk6waxgnc

  • MD5

    4547a8c15b1813e6d8c3f740a55c267f

  • SHA1

    9fe2a432695894b62dfe0562fe50509a1892ce60

  • SHA256

    b28d08621ebdeeaaf01bcd16ad1c6d74502ade3be812736abd93363af786f92b

  • SHA512

    385a9b10235d8e6006319ba056a62ebfa2e837938e25bf2ecefc9502a19c64a58160b2f1a963da92960b551ff617f5f14f0a2f1739fe4e128056b606d97225c2

  • SSDEEP

    12288:o18tQncSV1jOMBTKvZA7hoqFLLUeG9YAcEN:o1DnbjymO/qJg9nN

Score
7/10
aspackv2bootkitpersistence

Malware Config

Targets

    • Target

      4547a8c15b1813e6d8c3f740a55c267f_JaffaCakes118

    • Size

      448KB

    • MD5

      4547a8c15b1813e6d8c3f740a55c267f

    • SHA1

      9fe2a432695894b62dfe0562fe50509a1892ce60

    • SHA256

      b28d08621ebdeeaaf01bcd16ad1c6d74502ade3be812736abd93363af786f92b

    • SHA512

      385a9b10235d8e6006319ba056a62ebfa2e837938e25bf2ecefc9502a19c64a58160b2f1a963da92960b551ff617f5f14f0a2f1739fe4e128056b606d97225c2

    • SSDEEP

      12288:o18tQncSV1jOMBTKvZA7hoqFLLUeG9YAcEN:o1DnbjymO/qJg9nN

    Score
    7/10
    aspackv2bootkitpersistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Deletes itself

    • Executes dropped EXE

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks