98ce52d48922cfd72e0849f24bc415b4160335657fcf1d17de96fc63d3726af2 | Triage

Sharing

General

Target

fb2f02f6e2dfb9203f1071f0b72402f0_JaffaCakes118
Size

119KB
Sample

240419-z5mljage8v
MD5

fb2f02f6e2dfb9203f1071f0b72402f0
SHA1

8086d26c4a96854d407047ccf360002cd97d1986
SHA256

98ce52d48922cfd72e0849f24bc415b4160335657fcf1d17de96fc63d3726af2
SHA512

aa78e3934f1a77e1a4605c34cfc2204fee24ac26295791c8ae09e6249a41a6364d49d67ecbeaa7f859ff153eb22ac1ec59045d13a1ab261f390b0aba2be92232
SSDEEP

3072:db6OiZbbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVU7xzabi8:db6OiBwvP6bQ7yMP+DE827J0

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  fb2f02f6e2dfb9203f1071f0b72402f0_JaffaCakes118
- Size
  
  119KB
- MD5
  
  fb2f02f6e2dfb9203f1071f0b72402f0
- SHA1
  
  8086d26c4a96854d407047ccf360002cd97d1986
- SHA256
  
  98ce52d48922cfd72e0849f24bc415b4160335657fcf1d17de96fc63d3726af2
- SHA512
  
  aa78e3934f1a77e1a4605c34cfc2204fee24ac26295791c8ae09e6249a41a6364d49d67ecbeaa7f859ff153eb22ac1ec59045d13a1ab261f390b0aba2be92232
- SSDEEP
  
  3072:db6OiZbbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVU7xzabi8:db6OiBwvP6bQ7yMP+DE827J0
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2