Overview

overview

6

Static

static

3

1a8ac6f70c...18.exe

windows7-x64

6

1a8ac6f70c...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a8ac6f70c0ce5ef052631656c6e11a1_JaffaCakes118

  • Size

    122KB

  • Sample

    240701-j1j2va1ajh

  • MD5

    1a8ac6f70c0ce5ef052631656c6e11a1

  • SHA1

    bab57bd34bd220fe60b918915c5ca60c8a513f39

  • SHA256

    c426af2951f48c5985a763aafb7c35521a82e0636f9224ce22bbd930a05c37c6

  • SHA512

    292e16b5e4853368e4e6abdb5bbc5717730374b2c7423ab22842a3501e88f64f596e6fff7c00451aeda23119304667cdfa1a302850ef448a984a9cacc7588e3a

  • SSDEEP

    3072:pdRy74UdiJS9Bm4yzDp24OLfnpIAIN7iu5W3PHO:w4wiA9Bm/zDp24OjpIAIN+u5Wf

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      1a8ac6f70c0ce5ef052631656c6e11a1_JaffaCakes118

    • Size

      122KB

    • MD5

      1a8ac6f70c0ce5ef052631656c6e11a1

    • SHA1

      bab57bd34bd220fe60b918915c5ca60c8a513f39

    • SHA256

      c426af2951f48c5985a763aafb7c35521a82e0636f9224ce22bbd930a05c37c6

    • SHA512

      292e16b5e4853368e4e6abdb5bbc5717730374b2c7423ab22842a3501e88f64f596e6fff7c00451aeda23119304667cdfa1a302850ef448a984a9cacc7588e3a

    • SSDEEP

      3072:pdRy74UdiJS9Bm4yzDp24OLfnpIAIN7iu5W3PHO:w4wiA9Bm/zDp24OjpIAIN+u5Wf

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks