8e1033f1a6cb71206939f75a8ef39ca68d2c339bd0db8ce659fab2fbc35481d6 | Triage

Sharing

General

Target

5b2a88e958b4efefa95f151ce64e4623_JaffaCakes118
Size

344KB
Sample

240719-kcx48svdng
MD5

5b2a88e958b4efefa95f151ce64e4623
SHA1

74f3bb8e7e72890c3732a2c935382796b7b423ad
SHA256

8e1033f1a6cb71206939f75a8ef39ca68d2c339bd0db8ce659fab2fbc35481d6
SHA512

4c18a083dd954829f4700e08d6d64e6993b80b75db4b4d13abeedef45209a5642e286e0497360c094122fbc5a5b57ce5d9ae28d2bdae9b9cfcc2f636e053d208
SSDEEP

6144:P8IIXfqTuuOywxZSp3pfGhwGp1PSiYUXoktxt8PP3SChCMQX78zOQ9+bvSt/cap5:1IXSTu3jfi6wGpBYyXtxYP3SChGo31NP

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  keygen.exe
- Size
  
  352KB
- MD5
  
  f40c918bcd90702987106e144430c7cd
- SHA1
  
  81337534a75b68f4b78a0dc0f25a3c45e57b21fb
- SHA256
  
  9c40ade7bebc0ba4106d5780381473dab8c74fe6efbb9ae742c8e104b661ab70
- SHA512
  
  7c915f32751611abd230087cb0cbcc29326f8945bde5647feda6d4ead76cce7884c91661a9963cd9d163a93ce16579f19b30c60d552fd7c72e1135f4be8a62cc
- SSDEEP
  
  6144:fQzomyTL0bsS8Z4VW+XJq19IVYj7l498gWNlPTGQQm6agrdM47QL:fQT5bsS89+VVSNtTirdMWQ
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2