55f8bf22f4afe26c0473b3399a30a1d07550d448c10ef6f5655c0d98e91731e8 | Triage

Sharing

General

Target

61b25af23c667a2eed64bbb84f9a3a83_JaffaCakes118
Size

163KB
Sample

240721-2ln2cs1bln
MD5

61b25af23c667a2eed64bbb84f9a3a83
SHA1

6fd6fe67974ecafd41a24b1db04a3c2e34dae248
SHA256

55f8bf22f4afe26c0473b3399a30a1d07550d448c10ef6f5655c0d98e91731e8
SHA512

0dd8a306ed162b1ee618ad70d6ee8599219d5b1b17ede760e8f7f050fba4dee83ab599a7df6d7499727f60d08055676d58b2606eb4b657846864f4e5db435a6f
SSDEEP

3072:y68He74NIdwUaFPmgRMNlPTGQQm6ytwZEsrYkK4b5AUWCH3:ybHe7in98gWNlPTGQQm6agrdPWM

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  61b25af23c667a2eed64bbb84f9a3a83_JaffaCakes118
- Size
  
  163KB
- MD5
  
  61b25af23c667a2eed64bbb84f9a3a83
- SHA1
  
  6fd6fe67974ecafd41a24b1db04a3c2e34dae248
- SHA256
  
  55f8bf22f4afe26c0473b3399a30a1d07550d448c10ef6f5655c0d98e91731e8
- SHA512
  
  0dd8a306ed162b1ee618ad70d6ee8599219d5b1b17ede760e8f7f050fba4dee83ab599a7df6d7499727f60d08055676d58b2606eb4b657846864f4e5db435a6f
- SSDEEP
  
  3072:y68He74NIdwUaFPmgRMNlPTGQQm6ytwZEsrYkK4b5AUWCH3:ybHe7in98gWNlPTGQQm6agrdPWM
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2