374b592d4a16870b57d5df9e4d3e39852f7644b30cb3ae2bc12bc0ea96281a20 | Triage

Sharing

General

Target

2f8ac91996f2d9c90af2e74b5c352fbc_JaffaCakes118
Size

182KB
Sample

240709-jryhwawekf
MD5

2f8ac91996f2d9c90af2e74b5c352fbc
SHA1

150d3171c87d3a3e242eb683ebd1263f93e8a93f
SHA256

374b592d4a16870b57d5df9e4d3e39852f7644b30cb3ae2bc12bc0ea96281a20
SHA512

260c3140b66e3765bc3d6dbade352721787ed57cae0e5b2215d54ffd5d58d1c755c22bb43f0b314c606e6e62b179f72a55e18db967668afa1ee4503ae191c694
SSDEEP

3072:Ls/NoDc6LhKWGaot6cH+L6KyubbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVUo:0uDcGhKRtZO6kwvP6bQ7yMP+DE8270Ag

Score

7^/10

aspackv2 bootkit persistence

Malware Config

Targets

- Target
  
  2f8ac91996f2d9c90af2e74b5c352fbc_JaffaCakes118
- Size
  
  182KB
- MD5
  
  2f8ac91996f2d9c90af2e74b5c352fbc
- SHA1
  
  150d3171c87d3a3e242eb683ebd1263f93e8a93f
- SHA256
  
  374b592d4a16870b57d5df9e4d3e39852f7644b30cb3ae2bc12bc0ea96281a20
- SHA512
  
  260c3140b66e3765bc3d6dbade352721787ed57cae0e5b2215d54ffd5d58d1c755c22bb43f0b314c606e6e62b179f72a55e18db967668afa1ee4503ae191c694
- SSDEEP
  
  3072:Ls/NoDc6LhKWGaot6cH+L6KyubbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVUo:0uDcGhKRtZO6kwvP6bQ7yMP+DE8270Ag
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2