8b09a93d337a8a2a218173b8b556da58b031c6ec4ab73b4fa37b14a63229316d | Triage

Sharing

General

Target

fdad12c7aa1139ed27a2558381a097e2_JaffaCakes118
Size

1.2MB
Sample

240420-z788baag8x
MD5

fdad12c7aa1139ed27a2558381a097e2
SHA1

abff8f5d3203ca8b7119591d63ce6387d2bf75f8
SHA256

8b09a93d337a8a2a218173b8b556da58b031c6ec4ab73b4fa37b14a63229316d
SHA512

2d94279168cfbeade1324ebca58c1ad4a8b3e61c1a4ea358a3d34ebd28b566f80eca6105d4f772c74e6a42cc180550e9d48a4dc0bd97da66904a16561ae36951
SSDEEP

24576:2ebAPB8HZBLUFQk81nt4M/pL1wAEIqSBanK6CC33VTj+1R8xRFLqqmbD1kWIAqP5:hbAPB8HZBLUFQP1PL15EIqS1e6q3FmK3

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  fdad12c7aa1139ed27a2558381a097e2_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  fdad12c7aa1139ed27a2558381a097e2
- SHA1
  
  abff8f5d3203ca8b7119591d63ce6387d2bf75f8
- SHA256
  
  8b09a93d337a8a2a218173b8b556da58b031c6ec4ab73b4fa37b14a63229316d
- SHA512
  
  2d94279168cfbeade1324ebca58c1ad4a8b3e61c1a4ea358a3d34ebd28b566f80eca6105d4f772c74e6a42cc180550e9d48a4dc0bd97da66904a16561ae36951
- SSDEEP
  
  24576:2ebAPB8HZBLUFQk81nt4M/pL1wAEIqSBanK6CC33VTj+1R8xRFLqqmbD1kWIAqP5:hbAPB8HZBLUFQP1PL15EIqS1e6q3FmK3
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence