1e85fbfb672fee14c9c4db9c87e39ff83686909dbb95ddb30016f47af01ec019 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28aaf71540a695a55bc4e07e4a50cd4b_JaffaCakes118
Size

122KB
Sample

240706-sy3wlsshkn
MD5

28aaf71540a695a55bc4e07e4a50cd4b
SHA1

928906b5ac42ee837f32b79eb3ed646942d95050
SHA256

1e85fbfb672fee14c9c4db9c87e39ff83686909dbb95ddb30016f47af01ec019
SHA512

98896f28beb4471d2fa897ca825c25b40a255eeb0358f8c5ebaf18e8fe70e4a82cc38ce524d4e1ffc21e7246f1dfd7d56d6ec4a5991f9ecdc1b9f582b6bf0ff1
SSDEEP

3072:eEUrnQC6uKhtRp7NpSo/SbL1wq4XoCtjeyosdSLJL:srnQLuKhNN6Bwq47tje7IS

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  28aaf71540a695a55bc4e07e4a50cd4b_JaffaCakes118
- Size
  
  122KB
- MD5
  
  28aaf71540a695a55bc4e07e4a50cd4b
- SHA1
  
  928906b5ac42ee837f32b79eb3ed646942d95050
- SHA256
  
  1e85fbfb672fee14c9c4db9c87e39ff83686909dbb95ddb30016f47af01ec019
- SHA512
  
  98896f28beb4471d2fa897ca825c25b40a255eeb0358f8c5ebaf18e8fe70e4a82cc38ce524d4e1ffc21e7246f1dfd7d56d6ec4a5991f9ecdc1b9f582b6bf0ff1
- SSDEEP
  
  3072:eEUrnQC6uKhtRp7NpSo/SbL1wq4XoCtjeyosdSLJL:srnQLuKhNN6Bwq47tje7IS
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2