Overview

overview

6

Static

static

5

53149b96fd...18.exe

windows7-x64

6

53149b96fd...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    53149b96fda106dea5ea2355262d04c4_JaffaCakes118

  • Size

    205KB

  • Sample

    241017-w43dtasajq

  • MD5

    53149b96fda106dea5ea2355262d04c4

  • SHA1

    2e4cde94d5cffeccda0a6012401c780046b98f64

  • SHA256

    b56f1e6de6e36bb9fc93b4853eed0f3ca6607c8156da60402d9edf69f4b005bd

  • SHA512

    ba6a9d0f3d60c7dae8ed16e4e671dcef97b6f3cb5c9b03fa1efbffa41e910a3137b24b20a5bec5e3bb898d7d280ba84e5aa8888e769d97ec6257fe3c5a56f5af

  • SSDEEP

    6144:PvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6mPCz:PvZ1bge0LMPjpORN8Il4

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      53149b96fda106dea5ea2355262d04c4_JaffaCakes118

    • Size

      205KB

    • MD5

      53149b96fda106dea5ea2355262d04c4

    • SHA1

      2e4cde94d5cffeccda0a6012401c780046b98f64

    • SHA256

      b56f1e6de6e36bb9fc93b4853eed0f3ca6607c8156da60402d9edf69f4b005bd

    • SHA512

      ba6a9d0f3d60c7dae8ed16e4e671dcef97b6f3cb5c9b03fa1efbffa41e910a3137b24b20a5bec5e3bb898d7d280ba84e5aa8888e769d97ec6257fe3c5a56f5af

    • SSDEEP

      6144:PvZ2IZbgekfZLlGGKZp+s8ohYRNudNI6mPCz:PvZ1bge0LMPjpORN8Il4

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks