249ae3f194bee187649dbcf469014090e38507ec39eea449728558c1260b2068 | Triage

Sharing

General

Target

1af53a1a2dc978fc26b47f198dd1bd06_JaffaCakes118
Size

149KB
Sample

240701-mleqcswerd
MD5

1af53a1a2dc978fc26b47f198dd1bd06
SHA1

1202533c3e2e7f1931a033d4ef455666f365e93c
SHA256

249ae3f194bee187649dbcf469014090e38507ec39eea449728558c1260b2068
SHA512

93dccbb8a74405c07c460c5e59e6480048e50eca3e2fc9632fcd85f0cc972d3f6e806cce1bd35f9490659bdbba890461349946d84724fedcb066527f8f9a886e
SSDEEP

3072:jSI+h/FkL6ha94CZDBk3zq+pS/5pTds1K6otruQz0R2PPxb6iFWMnzJ:eI+h/Fk2h04ONimwkd8KtsR2VZksJ

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  1af53a1a2dc978fc26b47f198dd1bd06_JaffaCakes118
- Size
  
  149KB
- MD5
  
  1af53a1a2dc978fc26b47f198dd1bd06
- SHA1
  
  1202533c3e2e7f1931a033d4ef455666f365e93c
- SHA256
  
  249ae3f194bee187649dbcf469014090e38507ec39eea449728558c1260b2068
- SHA512
  
  93dccbb8a74405c07c460c5e59e6480048e50eca3e2fc9632fcd85f0cc972d3f6e806cce1bd35f9490659bdbba890461349946d84724fedcb066527f8f9a886e
- SSDEEP
  
  3072:jSI+h/FkL6ha94CZDBk3zq+pS/5pTds1K6otruQz0R2PPxb6iFWMnzJ:eI+h/Fk2h04ONimwkd8KtsR2VZksJ
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence