Overview

overview

7

Static

static

7

6723d09446...18.exe

windows7-x64

7

6723d09446...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6723d09446a9162d5a460dd59c65f602_JaffaCakes118

  • Size

    226KB

  • Sample

    240723-l5bx5szfqh

  • MD5

    6723d09446a9162d5a460dd59c65f602

  • SHA1

    f943395231532918fe148c8f9f67f92b26c6b1a8

  • SHA256

    782a602d238c6bffe7864185997d8bae2c7648a807693cfeb5ba7ece69db1eba

  • SHA512

    563642534ddc65dd3d52f269afc5166e5c483e8bed6af689bb0bf926421b388967ad85bc8ab109f2dc8de0694a52458b4a46608ef433542920a45f5071b2b848

  • SSDEEP

    6144:9i76VJ5rAnZht81P0YArDtPqDONC+Awoqqg:87QJ50Dt8FPArDXfAhtg

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      6723d09446a9162d5a460dd59c65f602_JaffaCakes118

    • Size

      226KB

    • MD5

      6723d09446a9162d5a460dd59c65f602

    • SHA1

      f943395231532918fe148c8f9f67f92b26c6b1a8

    • SHA256

      782a602d238c6bffe7864185997d8bae2c7648a807693cfeb5ba7ece69db1eba

    • SHA512

      563642534ddc65dd3d52f269afc5166e5c483e8bed6af689bb0bf926421b388967ad85bc8ab109f2dc8de0694a52458b4a46608ef433542920a45f5071b2b848

    • SSDEEP

      6144:9i76VJ5rAnZht81P0YArDtPqDONC+Awoqqg:87QJ50Dt8FPArDXfAhtg

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks