Overview

overview

7

Static

static

3

JaffaCakes...cc.exe

windows7-x64

7

JaffaCakes...cc.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8acde77f6157d8f53783dfab311370cc

  • Size

    1.2MB

  • Sample

    250328-sxvhvazly9

  • MD5

    8acde77f6157d8f53783dfab311370cc

  • SHA1

    6fed2cb5d25332c3a193b6903fe44a45cbd7c1bc

  • SHA256

    919494303f059d91e52ec0bb56c9b5c33f46cb479e65bbc560cc4817b6fcc8ee

  • SHA512

    eb80dbe138d76b4313aa82f3d00312bdd670fc67ec4e14ad6601206b71fb6668b0e7cac31d12c5c369c1ff50fe78e9e96a70f1089938011d1cf1990446519161

  • SSDEEP

    24576:Q+3dwWxKk9+7GefVl9UygEOEpd70wRlsUiXLLNwUaXcXrnXM82p:ZtjeZUDFEMIl0XNw0M82

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      JaffaCakes118_8acde77f6157d8f53783dfab311370cc

    • Size

      1.2MB

    • MD5

      8acde77f6157d8f53783dfab311370cc

    • SHA1

      6fed2cb5d25332c3a193b6903fe44a45cbd7c1bc

    • SHA256

      919494303f059d91e52ec0bb56c9b5c33f46cb479e65bbc560cc4817b6fcc8ee

    • SHA512

      eb80dbe138d76b4313aa82f3d00312bdd670fc67ec4e14ad6601206b71fb6668b0e7cac31d12c5c369c1ff50fe78e9e96a70f1089938011d1cf1990446519161

    • SSDEEP

      24576:Q+3dwWxKk9+7GefVl9UygEOEpd70wRlsUiXLLNwUaXcXrnXM82p:ZtjeZUDFEMIl0XNw0M82

    Score
    7/10
    bootkitdiscoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks