Overview

overview

7

Static

static

3

b0eb0c2dd6...18.exe

windows7-x64

7

b0eb0c2dd6...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b0eb0c2dd635350cd4a9c28620fdaa04_JaffaCakes118

  • Size

    348KB

  • Sample

    241129-njp9raxngk

  • MD5

    b0eb0c2dd635350cd4a9c28620fdaa04

  • SHA1

    fe1c029ad065ea041d30c976d1c73bc121718a63

  • SHA256

    bb0a56ce26bf02e627c28c0115d517fb9c4ec5aef5cc0177831a9cfc89c8199d

  • SHA512

    8b73adbc3088c7d208fe21b3818c1c05f4760f1d73d04b017872414113a510cfb896195674ba2a10cfa88d36988a3a45934ea89db54691dac6a483f07984971a

  • SSDEEP

    6144:i4+FA+BAiMXHQur9MD7Lk9vtXyCLFlINvWLkNGPTd0owmYU/H68jPwb:3W+iMXHknLSvtbDLkNG1w+/HM

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      b0eb0c2dd635350cd4a9c28620fdaa04_JaffaCakes118

    • Size

      348KB

    • MD5

      b0eb0c2dd635350cd4a9c28620fdaa04

    • SHA1

      fe1c029ad065ea041d30c976d1c73bc121718a63

    • SHA256

      bb0a56ce26bf02e627c28c0115d517fb9c4ec5aef5cc0177831a9cfc89c8199d

    • SHA512

      8b73adbc3088c7d208fe21b3818c1c05f4760f1d73d04b017872414113a510cfb896195674ba2a10cfa88d36988a3a45934ea89db54691dac6a483f07984971a

    • SSDEEP

      6144:i4+FA+BAiMXHQur9MD7Lk9vtXyCLFlINvWLkNGPTd0owmYU/H68jPwb:3W+iMXHknLSvtbDLkNG1w+/HM

    Score
    7/10
    bootkitdiscoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks