b73886216facb5f15eb4f36d88e4facaf682811be3eb8ee59b80142c56725595 | Triage

Sharing

General

Target

f979be2834bf3dbb5ae4a21033552adf_JaffaCakes118
Size

180KB
Sample

240419-espvxahd51
MD5

f979be2834bf3dbb5ae4a21033552adf
SHA1

1e4ecc3a14efd4b1a73acd5400b93134a43e9ec5
SHA256

b73886216facb5f15eb4f36d88e4facaf682811be3eb8ee59b80142c56725595
SHA512

1ebd15c35bde36fb8bad72e71d24e7fe03f1b7dd78207607d75b7d72f81bbb09b2addc1cfb7a84073c26a47117cb89dcb63119f2e3dd01fe6ba332188c3de36d
SSDEEP

3072:GXrbHhrNMU8aKsmVzo9q0uNK6bbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVUE:G705MNKdwvP6bQ7yMP+DE827zyCC

Score

7^/10

aspackv2 bootkit persistence

Malware Config

Targets

- Target
  
  f979be2834bf3dbb5ae4a21033552adf_JaffaCakes118
- Size
  
  180KB
- MD5
  
  f979be2834bf3dbb5ae4a21033552adf
- SHA1
  
  1e4ecc3a14efd4b1a73acd5400b93134a43e9ec5
- SHA256
  
  b73886216facb5f15eb4f36d88e4facaf682811be3eb8ee59b80142c56725595
- SHA512
  
  1ebd15c35bde36fb8bad72e71d24e7fe03f1b7dd78207607d75b7d72f81bbb09b2addc1cfb7a84073c26a47117cb89dcb63119f2e3dd01fe6ba332188c3de36d
- SSDEEP
  
  3072:GXrbHhrNMU8aKsmVzo9q0uNK6bbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVUE:G705MNKdwvP6bQ7yMP+DE827zyCC
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2