1791880ed3619784c23f859d5d05dd3c6d228f2b8e5f4b916086dc6cb172d421 | Triage

Sharing

General

Target

2e31c82b75489aa1e7c30577b4ff4c97_JaffaCakes118
Size

394KB
Sample

240708-3bmk8athqk
MD5

2e31c82b75489aa1e7c30577b4ff4c97
SHA1

f4c05a5a719c6d0f9a61f7c0282421a13cee4e42
SHA256

1791880ed3619784c23f859d5d05dd3c6d228f2b8e5f4b916086dc6cb172d421
SHA512

8dafc09fdf7c6bc5992ebb10e6f09cd638fdb00f3a4b90b1c2937d172cd39171e06620a03f814935382fc041f22752614fedfd644177b8b57b6f19fceb29a3fd
SSDEEP

6144:6yALp/UzNqjs0bqlv7s4FCJA9s7TeT90y6dRWE7qHBtdzM8/nQshjr:6/p6CovIws7TCyy6ZqHBtdoynvhjr

Score

7^/10

aspackv2 bootkit persistence

Malware Config

Targets

- Target
  
  2e31c82b75489aa1e7c30577b4ff4c97_JaffaCakes118
- Size
  
  394KB
- MD5
  
  2e31c82b75489aa1e7c30577b4ff4c97
- SHA1
  
  f4c05a5a719c6d0f9a61f7c0282421a13cee4e42
- SHA256
  
  1791880ed3619784c23f859d5d05dd3c6d228f2b8e5f4b916086dc6cb172d421
- SHA512
  
  8dafc09fdf7c6bc5992ebb10e6f09cd638fdb00f3a4b90b1c2937d172cd39171e06620a03f814935382fc041f22752614fedfd644177b8b57b6f19fceb29a3fd
- SSDEEP
  
  6144:6yALp/UzNqjs0bqlv7s4FCJA9s7TeT90y6dRWE7qHBtdzM8/nQshjr:6/p6CovIws7TCyy6ZqHBtdoynvhjr
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence