Overview

overview

6

Static

static

5

0b18d45fd9...18.exe

windows7-x64

6

0b18d45fd9...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0b18d45fd98a16e9dfe7b70bde2555c8_JaffaCakes118

  • Size

    317KB

  • Sample

    241002-rpam2avaqe

  • MD5

    0b18d45fd98a16e9dfe7b70bde2555c8

  • SHA1

    3a056a12959d6e8d5cfe64b3d5895453f0c5f95d

  • SHA256

    4004d0498ebe36ce26d096412d43710eb683be6347d5a7619901c6cea55dda99

  • SHA512

    6c660223dd44ccf0e693f81b6ac434964f333724f1803fe2813c42be7285af03505a40ed2a56dc455062beb81317e990001477d53ee5d34396b8f775e43b0388

  • SSDEEP

    6144:vXKwXPYI31ULHtZoprdlxmVW/7kWr2oYVd61hofd3Pxm2+Gi9JiDQD3+PngU7fJ:vXBTlUAjl3/7rBYbaGFPsGeiDG+PVl

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      0b18d45fd98a16e9dfe7b70bde2555c8_JaffaCakes118

    • Size

      317KB

    • MD5

      0b18d45fd98a16e9dfe7b70bde2555c8

    • SHA1

      3a056a12959d6e8d5cfe64b3d5895453f0c5f95d

    • SHA256

      4004d0498ebe36ce26d096412d43710eb683be6347d5a7619901c6cea55dda99

    • SHA512

      6c660223dd44ccf0e693f81b6ac434964f333724f1803fe2813c42be7285af03505a40ed2a56dc455062beb81317e990001477d53ee5d34396b8f775e43b0388

    • SSDEEP

      6144:vXKwXPYI31ULHtZoprdlxmVW/7kWr2oYVd61hofd3Pxm2+Gi9JiDQD3+PngU7fJ:vXBTlUAjl3/7rBYbaGFPsGeiDG+PVl

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks