General
-
Target
94430acbcd0940e55e008538ee013f50_JaffaCakes118
-
Size
2.7MB
-
Sample
240813-w8xzwszdna
-
MD5
94430acbcd0940e55e008538ee013f50
-
SHA1
950642815aaee997ac697e8933aff48c053c5a97
-
SHA256
0564b03a4408684ed07531e812f101c038c9b7ae88af73cee770016b3f24fa16
-
SHA512
69f394b60b33d75d6a6e4a107745729a703d5e226cd2376d494340172cffd360b8050d916cb56fb95655fff861c9ae09a3f6b23a03526db9eae0c8b2eeac7200
-
SSDEEP
49152:lNeGT86DAlfDMpO4OHEPFrwUIFWdoa+CybDS/LX3OM6ft71toyet0sykFqc////L:frTjY9P0FrTNdh+PbDS/LXgt71toyetl
Malware Config
Targets
-
-
Target
94430acbcd0940e55e008538ee013f50_JaffaCakes118
-
Size
2.7MB
-
MD5
94430acbcd0940e55e008538ee013f50
-
SHA1
950642815aaee997ac697e8933aff48c053c5a97
-
SHA256
0564b03a4408684ed07531e812f101c038c9b7ae88af73cee770016b3f24fa16
-
SHA512
69f394b60b33d75d6a6e4a107745729a703d5e226cd2376d494340172cffd360b8050d916cb56fb95655fff861c9ae09a3f6b23a03526db9eae0c8b2eeac7200
-
SSDEEP
49152:lNeGT86DAlfDMpO4OHEPFrwUIFWdoa+CybDS/LX3OM6ft71toyet0sykFqc////L:frTjY9P0FrTNdh+PbDS/LXgt71toyetl
Score7/10-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Pre-OS Boot
1Bootkit
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1