Overview

overview

7

Static

static

7

b67e0fa92d...18.exe

windows7-x64

7

b67e0fa92d...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b67e0fa92defd3a39d59fb8c37557529_JaffaCakes118

  • Size

    466KB

  • Sample

    240822-f2z8nszhjh

  • MD5

    b67e0fa92defd3a39d59fb8c37557529

  • SHA1

    2b230b50418d1e4ed2cd00f0889effb071808a73

  • SHA256

    c240f7ff4f31a1645ebb9b363b83d4f8c9efd5e5f1b3ad83191698e379fa46ff

  • SHA512

    b26c2cacdd5510f9675baeb5b3f82bb628c341b2773fbcff7bd1710eb419dfd5b9957c26dd624550c51b360634f9387f380bd883863f18b6329979768a4c767d

  • SSDEEP

    6144:zz1n+YgkEq5NVQKzHMiLDH9riSRLigC9C0Z0+eLJoZTEQ5F7esMAhD:zB9VEq5NvjFLgtgC9C0yRLJ+FkKD

Score
7/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      b67e0fa92defd3a39d59fb8c37557529_JaffaCakes118

    • Size

      466KB

    • MD5

      b67e0fa92defd3a39d59fb8c37557529

    • SHA1

      2b230b50418d1e4ed2cd00f0889effb071808a73

    • SHA256

      c240f7ff4f31a1645ebb9b363b83d4f8c9efd5e5f1b3ad83191698e379fa46ff

    • SHA512

      b26c2cacdd5510f9675baeb5b3f82bb628c341b2773fbcff7bd1710eb419dfd5b9957c26dd624550c51b360634f9387f380bd883863f18b6329979768a4c767d

    • SSDEEP

      6144:zz1n+YgkEq5NVQKzHMiLDH9riSRLigC9C0Z0+eLJoZTEQ5F7esMAhD:zB9VEq5NvjFLgtgC9C0yRLJ+FkKD

    Score
    7/10
    bootkitdiscoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks