Overview

overview

7

Static

static

7

5ab9b4fb2e...18.exe

windows7-x64

7

5ab9b4fb2e...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ab9b4fb2e3805acdafc972c7668c131_JaffaCakes118

  • Size

    303KB

  • Sample

    240719-gnhl5sygna

  • MD5

    5ab9b4fb2e3805acdafc972c7668c131

  • SHA1

    4cb3fb29dc537e48ec356e74c521e2249e95de5f

  • SHA256

    9233fac032b6fc570853626c45b426c27ea723356457ad68e114a63a21f13c6f

  • SHA512

    16f8eef6a7318878db40a073994355d2b22f892542b02df923de5d34c0a6613e83bbbc3d4726ad9fcc116a898328b4f5aa556616fe573e957bcc9f1bcbaaabcc

  • SSDEEP

    6144:IvOBo+b95SQg9T4Cn+jjEJM+yAZeHfvNvm/dEJuGsVwPFLhcIRBMxj:17kQg9chj4JM0Ze/1vmllwPFLhcGO

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      5ab9b4fb2e3805acdafc972c7668c131_JaffaCakes118

    • Size

      303KB

    • MD5

      5ab9b4fb2e3805acdafc972c7668c131

    • SHA1

      4cb3fb29dc537e48ec356e74c521e2249e95de5f

    • SHA256

      9233fac032b6fc570853626c45b426c27ea723356457ad68e114a63a21f13c6f

    • SHA512

      16f8eef6a7318878db40a073994355d2b22f892542b02df923de5d34c0a6613e83bbbc3d4726ad9fcc116a898328b4f5aa556616fe573e957bcc9f1bcbaaabcc

    • SSDEEP

      6144:IvOBo+b95SQg9T4Cn+jjEJM+yAZeHfvNvm/dEJuGsVwPFLhcIRBMxj:17kQg9chj4JM0Ze/1vmllwPFLhcGO

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks