0516543812880f866611cfab19a55ed4e68c49a40e3d98537642cdb288c8daf6 | Triage

Sharing

General

Target

447a587bc48ba8f5d86d02c36e0e9cc9_JaffaCakes118
Size

4.6MB
Sample

240515-epcfeagg35
MD5

447a587bc48ba8f5d86d02c36e0e9cc9
SHA1

70627d58d86a448c2c46ab6cf4f4c3895925a6fb
SHA256

0516543812880f866611cfab19a55ed4e68c49a40e3d98537642cdb288c8daf6
SHA512

c101ba06a0c9ee4413821432253d0a9154e3bcd6bb1b9a112ad60a34d0151f702abc46bda29f690017d95bd1a332cd0428fafd3f1822860a36ccf51063a276d7
SSDEEP

98304:EWvDHctu/twpYnCUKRuAnJB3hk/cRD0Uii9mp8QhJ:EWS6CUKkAnJZkc4UpQhJ

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  447a587bc48ba8f5d86d02c36e0e9cc9_JaffaCakes118
- Size
  
  4.6MB
- MD5
  
  447a587bc48ba8f5d86d02c36e0e9cc9
- SHA1
  
  70627d58d86a448c2c46ab6cf4f4c3895925a6fb
- SHA256
  
  0516543812880f866611cfab19a55ed4e68c49a40e3d98537642cdb288c8daf6
- SHA512
  
  c101ba06a0c9ee4413821432253d0a9154e3bcd6bb1b9a112ad60a34d0151f702abc46bda29f690017d95bd1a332cd0428fafd3f1822860a36ccf51063a276d7
- SSDEEP
  
  98304:EWvDHctu/twpYnCUKRuAnJB3hk/cRD0Uii9mp8QhJ:EWS6CUKkAnJZkc4UpQhJ
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence