Overview

overview

7

Static

static

7

ac86132b1c...18.exe

windows7-x64

7

ac86132b1c...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac86132b1c9f4035d01fcde3af682bb8_JaffaCakes118

  • Size

    316KB

  • Sample

    240819-zl1ztavejh

  • MD5

    ac86132b1c9f4035d01fcde3af682bb8

  • SHA1

    8c9d5606d52942a6586e894e108f7395fd7d6025

  • SHA256

    8fe8b1e5d01cdc2a10f685e49bb94ac39858c8e49e39dd213ac4f3b1f728b5ff

  • SHA512

    1653b635de351d3ca61994780c10f4228620f6460ce5fe0f64f1ae92a1eb291f0757d49837ca8f733951e541f39f5ac810b78cadc94518e0b2e0f89a5c83de4b

  • SSDEEP

    6144:aJiMpm+TDRlPswEvuB5xJRCSIVnuewQ7hpEOO5i75ceg/J8iuQ3FO:a42vRlPsBvmxzC/GQVpEOOOPgJuQ3FO

Score
7/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      ac86132b1c9f4035d01fcde3af682bb8_JaffaCakes118

    • Size

      316KB

    • MD5

      ac86132b1c9f4035d01fcde3af682bb8

    • SHA1

      8c9d5606d52942a6586e894e108f7395fd7d6025

    • SHA256

      8fe8b1e5d01cdc2a10f685e49bb94ac39858c8e49e39dd213ac4f3b1f728b5ff

    • SHA512

      1653b635de351d3ca61994780c10f4228620f6460ce5fe0f64f1ae92a1eb291f0757d49837ca8f733951e541f39f5ac810b78cadc94518e0b2e0f89a5c83de4b

    • SSDEEP

      6144:aJiMpm+TDRlPswEvuB5xJRCSIVnuewQ7hpEOO5i75ceg/J8iuQ3FO:a42vRlPsBvmxzC/GQVpEOOOPgJuQ3FO

    Score
    7/10
    bootkitdiscoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks