Overview

overview

6

Static

static

5

faea582e33...18.exe

windows7-x64

6

faea582e33...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    faea582e3347c43446611a35f0f6d0a4_JaffaCakes118

  • Size

    317KB

  • Sample

    240927-z1zejasbqc

  • MD5

    faea582e3347c43446611a35f0f6d0a4

  • SHA1

    d749c5446cbec846c422efc69fc7971dc3dccdd7

  • SHA256

    03c68d8e3ff52e632f1ca4fe7d6f1f59f658d4cee3a6598afaea88efc3f384d6

  • SHA512

    f33a4b2f4ee17504671a3ad3a29668151ea81648e8168bb62f0fe77b3e2298eab89e3ba9e62e2cafade160269b5027e760f63afc5837fca69cf3f71ebfca49b4

  • SSDEEP

    6144:YPSt0zZpuK/KAfKFJSMXkzGVvh3l2PFRx1Ah6fe2OSSg832O:YDZp//xyFJSLzGVJ1a3xCh6wSSXmO

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      faea582e3347c43446611a35f0f6d0a4_JaffaCakes118

    • Size

      317KB

    • MD5

      faea582e3347c43446611a35f0f6d0a4

    • SHA1

      d749c5446cbec846c422efc69fc7971dc3dccdd7

    • SHA256

      03c68d8e3ff52e632f1ca4fe7d6f1f59f658d4cee3a6598afaea88efc3f384d6

    • SHA512

      f33a4b2f4ee17504671a3ad3a29668151ea81648e8168bb62f0fe77b3e2298eab89e3ba9e62e2cafade160269b5027e760f63afc5837fca69cf3f71ebfca49b4

    • SSDEEP

      6144:YPSt0zZpuK/KAfKFJSMXkzGVvh3l2PFRx1Ah6fe2OSSg832O:YDZp//xyFJSLzGVJ1a3xCh6wSSXmO

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks