Overview

overview

7

Static

static

7

1a78f95e3c...18.dll

windows7-x64

6

1a78f95e3c...18.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a78f95e3ca1f53a5500d2491396c996_JaffaCakes118

  • Size

    139KB

  • Sample

    240701-jjee2ashlj

  • MD5

    1a78f95e3ca1f53a5500d2491396c996

  • SHA1

    1c109bdf90bbe360db91fd8297e9e8771eb3ea9b

  • SHA256

    f42489138bf2a13cf1f4ad2f9d7b556a8571038e0d4b3f2e560ee2180723d743

  • SHA512

    94946f6685379b3b3b0e024c0c867c5c1b089f2721c7176d879d3dd3fcb5ba3711ee36746e00c6bf669ee1680a49919b666625b16720c5ed276f5820c1c98a5b

  • SSDEEP

    3072:ZYY96HM0XnpvTyQvGn+nCuhTr8npE3dvvq9aGNLlcbCbHAaQjprtMfrRS72o:Zp4TyQOI5JgpcvqNplcbAQjprt+rgCo

Score
7/10
aspackv2bootkitpersistence

Malware Config

Targets

    • Target

      1a78f95e3ca1f53a5500d2491396c996_JaffaCakes118

    • Size

      139KB

    • MD5

      1a78f95e3ca1f53a5500d2491396c996

    • SHA1

      1c109bdf90bbe360db91fd8297e9e8771eb3ea9b

    • SHA256

      f42489138bf2a13cf1f4ad2f9d7b556a8571038e0d4b3f2e560ee2180723d743

    • SHA512

      94946f6685379b3b3b0e024c0c867c5c1b089f2721c7176d879d3dd3fcb5ba3711ee36746e00c6bf669ee1680a49919b666625b16720c5ed276f5820c1c98a5b

    • SSDEEP

      3072:ZYY96HM0XnpvTyQvGn+nCuhTr8npE3dvvq9aGNLlcbCbHAaQjprtMfrRS72o:Zp4TyQOI5JgpcvqNplcbAQjprt+rgCo

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks