2c0802bd8bc648a6d61e2ba210a16a504d4cf390c5ae8959dc7fd99886bf50e1 | Triage

Sharing

General

Target

4c62414401d14bf798426cac7ed80176_JaffaCakes118
Size

122KB
Sample

240716-ck88gazgmr
MD5

4c62414401d14bf798426cac7ed80176
SHA1

cfbe6c49d12506fd3fcd1d6ba4d7bc96ef022461
SHA256

2c0802bd8bc648a6d61e2ba210a16a504d4cf390c5ae8959dc7fd99886bf50e1
SHA512

dfe558aad1f669fd35956fcc92012e75312825d405b9b37ad2144e7a3b5b510b3b4ee2bc574cf686dbb58e4fe9f727b5f0138a650991917deb3eb54a662d8924
SSDEEP

3072:r6BaFKUEBSLVg584NT7aE5JwmyD+hvjADjt3gS:2BkW7P5JwmyD+hmBg

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  4c62414401d14bf798426cac7ed80176_JaffaCakes118
- Size
  
  122KB
- MD5
  
  4c62414401d14bf798426cac7ed80176
- SHA1
  
  cfbe6c49d12506fd3fcd1d6ba4d7bc96ef022461
- SHA256
  
  2c0802bd8bc648a6d61e2ba210a16a504d4cf390c5ae8959dc7fd99886bf50e1
- SHA512
  
  dfe558aad1f669fd35956fcc92012e75312825d405b9b37ad2144e7a3b5b510b3b4ee2bc574cf686dbb58e4fe9f727b5f0138a650991917deb3eb54a662d8924
- SSDEEP
  
  3072:r6BaFKUEBSLVg584NT7aE5JwmyD+hvjADjt3gS:2BkW7P5JwmyD+hmBg
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence