Overview

overview

6

Static

static

5

915e333813...18.exe

windows7-x64

6

915e333813...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    915e333813bbda94b5abdeadfe9e10d9_JaffaCakes118

  • Size

    202KB

  • Sample

    241123-3thd8ayrcp

  • MD5

    915e333813bbda94b5abdeadfe9e10d9

  • SHA1

    16e3b717f6363973b599e8c1b5a047efff363431

  • SHA256

    0633c9d3d4a0d2b1dc2b1d177ac0ff8de294801471f2e2bf14013130e8f0e35e

  • SHA512

    23e13408bc058c5df3c23e5cea680f16ee13b71354d85a2130f49becb53957e4edc190f987f52bfe8c1ef3ff4daa97a9ed9a2942748b5911043efecaf854b2cd

  • SSDEEP

    6144:Q2f7xz5jBEciLzLsOu+/ifpY5MY5FjV0FYtOsN/VmmIFN1W:Qul9lE/LsANz5jXtOsN/ImYa

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      915e333813bbda94b5abdeadfe9e10d9_JaffaCakes118

    • Size

      202KB

    • MD5

      915e333813bbda94b5abdeadfe9e10d9

    • SHA1

      16e3b717f6363973b599e8c1b5a047efff363431

    • SHA256

      0633c9d3d4a0d2b1dc2b1d177ac0ff8de294801471f2e2bf14013130e8f0e35e

    • SHA512

      23e13408bc058c5df3c23e5cea680f16ee13b71354d85a2130f49becb53957e4edc190f987f52bfe8c1ef3ff4daa97a9ed9a2942748b5911043efecaf854b2cd

    • SSDEEP

      6144:Q2f7xz5jBEciLzLsOu+/ifpY5MY5FjV0FYtOsN/VmmIFN1W:Qul9lE/LsANz5jXtOsN/ImYa

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks