Overview

overview

6

Static

static

5

101127ef56...18.exe

windows7-x64

6

101127ef56...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    101127ef56eb784c1df8352ab300433d_JaffaCakes118

  • Size

    326KB

  • Sample

    241003-w3sg8atcnd

  • MD5

    101127ef56eb784c1df8352ab300433d

  • SHA1

    abe0bef685ba1028061df90f2cfb7883d6e23e5f

  • SHA256

    75c64718bf9dbace6f748e6bedb027b38e3e5c979853fbd6069ce25570a0ef1b

  • SHA512

    f51cdf7d5340c41aba63968b7f09b1a6ebf7597c7b927169ca7ab3ccae785de64dd72fe742efea208dd336b05cd8ebd2c5e38161dd3fe223790d490112e75d79

  • SSDEEP

    6144:+BocFBLsmRgcqbbgFLR1YJHrBUB3EwM/PjPssS8sC1Kx2XN0pJMnQci:moYumxqbUdRyZCB3tMXjPPNJwxiGL0Qv

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      101127ef56eb784c1df8352ab300433d_JaffaCakes118

    • Size

      326KB

    • MD5

      101127ef56eb784c1df8352ab300433d

    • SHA1

      abe0bef685ba1028061df90f2cfb7883d6e23e5f

    • SHA256

      75c64718bf9dbace6f748e6bedb027b38e3e5c979853fbd6069ce25570a0ef1b

    • SHA512

      f51cdf7d5340c41aba63968b7f09b1a6ebf7597c7b927169ca7ab3ccae785de64dd72fe742efea208dd336b05cd8ebd2c5e38161dd3fe223790d490112e75d79

    • SSDEEP

      6144:+BocFBLsmRgcqbbgFLR1YJHrBUB3EwM/PjPssS8sC1Kx2XN0pJMnQci:moYumxqbUdRyZCB3tMXjPPNJwxiGL0Qv

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks