Overview

overview

7

Static

static

7

5d22af61ac...18.exe

windows7-x64

7

5d22af61ac...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5d22af61ac8f4d46919a6475ad25fd42_JaffaCakes118

  • Size

    230KB

  • Sample

    240719-w2zj5sxflh

  • MD5

    5d22af61ac8f4d46919a6475ad25fd42

  • SHA1

    3af9e2a69c1f149ad6178a67e0063de1f0637987

  • SHA256

    9e6f9eb7dc7940dc395657e844a786cafc28ae536915c2c8eebf35cc9f0f2c5f

  • SHA512

    b8a55bcf760a4a53583b9929896fe340f418db4e9b4c024ee301dd80b8f66a58ec49d26b68dee8d92a8293aa12a70d63460d7c88ea032997899a478dab9be649

  • SSDEEP

    6144:afOOBdC1kDAwnp1D8nCl+DKkZVd2pqrRZltNe8L6f:amkA10Tl+KkUpqrRhNlL6f

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      5d22af61ac8f4d46919a6475ad25fd42_JaffaCakes118

    • Size

      230KB

    • MD5

      5d22af61ac8f4d46919a6475ad25fd42

    • SHA1

      3af9e2a69c1f149ad6178a67e0063de1f0637987

    • SHA256

      9e6f9eb7dc7940dc395657e844a786cafc28ae536915c2c8eebf35cc9f0f2c5f

    • SHA512

      b8a55bcf760a4a53583b9929896fe340f418db4e9b4c024ee301dd80b8f66a58ec49d26b68dee8d92a8293aa12a70d63460d7c88ea032997899a478dab9be649

    • SSDEEP

      6144:afOOBdC1kDAwnp1D8nCl+DKkZVd2pqrRZltNe8L6f:amkA10Tl+KkUpqrRhNlL6f

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks