General
-
Target
4f5e4058a580b8aea367a25aa196f364_JaffaCakes118
-
Size
402KB
-
Sample
241016-2eb38azeml
-
MD5
4f5e4058a580b8aea367a25aa196f364
-
SHA1
1d435f2dbdd96c99313294f91bfa95ddc3b3237b
-
SHA256
eaf7841ef0c0d348785b2c7b79fad6bfe78df090a156aa731809fb5d59d467f8
-
SHA512
f87fb2fe39c333ee8a3ee91bcb5abf27194fd188c28618c7d65e736b05955ddb18758cd5404d7f37e7d1629dfe185708983e8a83b72ba05feb01679f0176ea04
-
SSDEEP
12288:4EYY8Xi/C6/am+gt/Lyq10TlIDKEWBWVkvM8Rm:4EYY8y/C/mfFydus2k8
Static task
static1
Behavioral task
behavioral1
Sample
qqgamebox/MBox.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
qqgamebox/MBox.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
qqgamebox/河源下载站-cngr.cn.url
Resource
win7-20241010-en
Behavioral task
behavioral4
Sample
qqgamebox/河源下载站-cngr.cn.url
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
qqgamebox/MBox.exe
-
Size
924KB
-
MD5
ce660403e86f690372efbb19f7c90669
-
SHA1
75efac97c5bbb7470c07773fd41cd18fcbc7c0be
-
SHA256
85d0919eb6ac2602692d05821b8b87dc3e2a3ee9a1b41600ac5cdf496eceddac
-
SHA512
82af828b53905baf1cb2ee4a7d02043c1b204d9f848eb0cd6a4622c37bb323987ba0c6658bf21adff010ee1d001e5c8b0415c4f9eeebc3f70b078ce01dfd6390
-
SSDEEP
24576:eqqUIgIgIgIgIgIgIgbVnDk0tDNJGxEe8M5Q5eu:IunDXtMEe554eu
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
-
-
Target
qqgamebox/河源下载站-cngr.cn.url
-
Size
110B
-
MD5
87d5540eb47b60f225cc6d5e9ec5d3b5
-
SHA1
bb87c8cd2721eed95ed96cfed3c23a71dd636743
-
SHA256
7503e8e9530726e8934149fb2afc1a9638d8a4727cc05c6bed1c1b1539dc43fa
-
SHA512
ed81acc65c042f99ed20b511a755606e13619ddbd7e05125ecbcf5342ac9239329184d8b1b45d47ee4fc0ef4c62e06b2bd806b73f0f5c852173798e76d23a951
Score1/10 -