6b3d2e5738ff9d2f7d929548385ab79ca8297817bed06de0505eb0e89f06a4a5 | Triage

Sharing

General

Target

ffdd4aeefb9328df176eff2863727432_JaffaCakes118
Size

2.5MB
Sample

240421-wsz5baha6x
MD5

ffdd4aeefb9328df176eff2863727432
SHA1

4f3c4131b33ac4a91683edad0bacd8cd6be1de45
SHA256

6b3d2e5738ff9d2f7d929548385ab79ca8297817bed06de0505eb0e89f06a4a5
SHA512

7caac6bc2dbfdf9da488d4f45baafa59e51712a7d856f1c73b8b047849aa60218c9ae9c9e822a1f6decc1ac0fb301c9912d45b51689fa4f4fcbc87172c94b92d
SSDEEP

24576:6b0+93II/XTuwUerkppxSnvb0mWw+SVy/Eri98Dl5SCD/C78L74vwHcVTH8R304m:w0+93HXlTffyJmj9D/DL77HccR30i1

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  ffdd4aeefb9328df176eff2863727432_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  ffdd4aeefb9328df176eff2863727432
- SHA1
  
  4f3c4131b33ac4a91683edad0bacd8cd6be1de45
- SHA256
  
  6b3d2e5738ff9d2f7d929548385ab79ca8297817bed06de0505eb0e89f06a4a5
- SHA512
  
  7caac6bc2dbfdf9da488d4f45baafa59e51712a7d856f1c73b8b047849aa60218c9ae9c9e822a1f6decc1ac0fb301c9912d45b51689fa4f4fcbc87172c94b92d
- SSDEEP
  
  24576:6b0+93II/XTuwUerkppxSnvb0mWw+SVy/Eri98Dl5SCD/C78L74vwHcVTH8R304m:w0+93HXlTffyJmj9D/DL77HccR30i1
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence