dead5f05b33a13907f4fd106ac705ee0cdee7958e12fc46a74e0f550d4b072f4 | Triage

Sharing

General

Target

2da17663fdcb99f45111fee0c006f8ea_JaffaCakes118
Size

7.8MB
Sample

240510-get9kseb41
MD5

2da17663fdcb99f45111fee0c006f8ea
SHA1

a86893b8b2a06997cf933f72119e47cca4b4314c
SHA256

dead5f05b33a13907f4fd106ac705ee0cdee7958e12fc46a74e0f550d4b072f4
SHA512

a1588d4c1f970aec398ea13ed4e0dd3950c47acb055c9da7db41fc1c8bb228b15ebdf8bbe5a9c15588bc2d4200f5555540302cd4c828c04a9c0568cd705557bc
SSDEEP

196608:CYsfCpsjt/Z4UtVR0OkyTgU8DaQM35Ze3htvXMIvD:CH6uptn0CgU8tHtvXtvD

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  2da17663fdcb99f45111fee0c006f8ea_JaffaCakes118
- Size
  
  7.8MB
- MD5
  
  2da17663fdcb99f45111fee0c006f8ea
- SHA1
  
  a86893b8b2a06997cf933f72119e47cca4b4314c
- SHA256
  
  dead5f05b33a13907f4fd106ac705ee0cdee7958e12fc46a74e0f550d4b072f4
- SHA512
  
  a1588d4c1f970aec398ea13ed4e0dd3950c47acb055c9da7db41fc1c8bb228b15ebdf8bbe5a9c15588bc2d4200f5555540302cd4c828c04a9c0568cd705557bc
- SSDEEP
  
  196608:CYsfCpsjt/Z4UtVR0OkyTgU8DaQM35Ze3htvXMIvD:CH6uptn0CgU8tHtvXtvD
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence