b1fc3c5c6a0d4b634391aaba39a1399be0e1d72af0c576e235b79ef27ce2eacb | Triage

Sharing

General

Target

fd961f0e44052a55dce87dc0aacf6eb6_JaffaCakes118
Size

143KB
Sample

240420-za7yzshc52
MD5

fd961f0e44052a55dce87dc0aacf6eb6
SHA1

4d77893eef3a8fdb653ede93abe6a970d9fef3b5
SHA256

b1fc3c5c6a0d4b634391aaba39a1399be0e1d72af0c576e235b79ef27ce2eacb
SHA512

b2550155328415379a038f41b54f6b2a3e9fb007c99541e8cf9131bc3e81f82024dd3d8deebb1e51baa721cfcbb7379e2541457050a71acd727ca4da58a1d7b9
SSDEEP

3072:fJcZy1BhPLTJK5MxOFbbrZ6+m6NiL15+Eq7Kf3Wrar7arBYFoFwue9Z:fW41BdTJElQKN8Q2ZGStP

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  fd961f0e44052a55dce87dc0aacf6eb6_JaffaCakes118
- Size
  
  143KB
- MD5
  
  fd961f0e44052a55dce87dc0aacf6eb6
- SHA1
  
  4d77893eef3a8fdb653ede93abe6a970d9fef3b5
- SHA256
  
  b1fc3c5c6a0d4b634391aaba39a1399be0e1d72af0c576e235b79ef27ce2eacb
- SHA512
  
  b2550155328415379a038f41b54f6b2a3e9fb007c99541e8cf9131bc3e81f82024dd3d8deebb1e51baa721cfcbb7379e2541457050a71acd727ca4da58a1d7b9
- SSDEEP
  
  3072:fJcZy1BhPLTJK5MxOFbbrZ6+m6NiL15+Eq7Kf3Wrar7arBYFoFwue9Z:fW41BdTJElQKN8Q2ZGStP
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2