Overview

overview

7

Static

static

7

a1dc0b879b...18.exe

windows7-x64

7

a1dc0b879b...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1dc0b879b4b5bf819466b3676942c1d_JaffaCakes118

  • Size

    471KB

  • Sample

    240817-kgkdyazcjk

  • MD5

    a1dc0b879b4b5bf819466b3676942c1d

  • SHA1

    43b160c5c71b00873377328a557ee1ad54938851

  • SHA256

    bcb3061f024017544f2364f420a877b44198ddcd1d65f9d2ecd32206747e8d14

  • SHA512

    a331c4b80b1850024ded402bac8ef82195efe56507f0ac81f59efd9034c05f1c08c3660125c169d9eabcd31857d2e7998fe17d5776e1f212b441c8e3561374b8

  • SSDEEP

    6144:7WqjOyTnFNYcMjvb6s06y3IHkD8PObZJ282FZzc4fdytV+nyyMrDQK7qLmL4/Bw:7W3sFNZ3fBrbZE8WzVnw/7qE4pw

Score
7/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      a1dc0b879b4b5bf819466b3676942c1d_JaffaCakes118

    • Size

      471KB

    • MD5

      a1dc0b879b4b5bf819466b3676942c1d

    • SHA1

      43b160c5c71b00873377328a557ee1ad54938851

    • SHA256

      bcb3061f024017544f2364f420a877b44198ddcd1d65f9d2ecd32206747e8d14

    • SHA512

      a331c4b80b1850024ded402bac8ef82195efe56507f0ac81f59efd9034c05f1c08c3660125c169d9eabcd31857d2e7998fe17d5776e1f212b441c8e3561374b8

    • SSDEEP

      6144:7WqjOyTnFNYcMjvb6s06y3IHkD8PObZJ282FZzc4fdytV+nyyMrDQK7qLmL4/Bw:7W3sFNZ3fBrbZE8WzVnw/7qE4pw

    Score
    7/10
    bootkitdiscoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks