Overview

overview

6

Static

static

3

65dc16213a...18.exe

windows7-x64

6

65dc16213a...18.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65dc16213a81c6e15d7becb20756d40e_JaffaCakes118

  • Size

    316KB

  • Sample

    240723-dc9dyatcrh

  • MD5

    65dc16213a81c6e15d7becb20756d40e

  • SHA1

    d2eb034e79da0c3395107e667b2ae2c7d3e6923b

  • SHA256

    53072ff0b15956bde023ff3f38d6bc6dc1f804c8840583bab9700724d7ce3f9c

  • SHA512

    9a5d9a1b4229dba25e09f7da1b1b54879e0a6d986a8de6802ccbdd8bc75b5701d720b8e4a0f72f5c9c3663c89c88d1399f09434f82ec4d1d4690f7e4a207eb8f

  • SSDEEP

    6144:6sGTsoNQlHv4GJpU0lCbfWmyGZ8nVW5GJZ2tNYLj8MfsFqPHnOff:RGTg1lJpU0TGWVzYKj86sFIHg

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      65dc16213a81c6e15d7becb20756d40e_JaffaCakes118

    • Size

      316KB

    • MD5

      65dc16213a81c6e15d7becb20756d40e

    • SHA1

      d2eb034e79da0c3395107e667b2ae2c7d3e6923b

    • SHA256

      53072ff0b15956bde023ff3f38d6bc6dc1f804c8840583bab9700724d7ce3f9c

    • SHA512

      9a5d9a1b4229dba25e09f7da1b1b54879e0a6d986a8de6802ccbdd8bc75b5701d720b8e4a0f72f5c9c3663c89c88d1399f09434f82ec4d1d4690f7e4a207eb8f

    • SSDEEP

      6144:6sGTsoNQlHv4GJpU0lCbfWmyGZ8nVW5GJZ2tNYLj8MfsFqPHnOff:RGTg1lJpU0TGWVzYKj86sFIHg

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks