7fefe0ffc332900a888aeb763e845bb5d9198c5756d812f27d45aa43e6013477 | Triage

Sharing

General

Target

81c889741b0aeee644495da9e89b0198_JaffaCakes118
Size

151KB
Sample

240801-1an2js1cnd
MD5

81c889741b0aeee644495da9e89b0198
SHA1

ab1d6baff6b2252406b7ca9065d3e0417de90bea
SHA256

7fefe0ffc332900a888aeb763e845bb5d9198c5756d812f27d45aa43e6013477
SHA512

7d752f09558fc20482dc38a26f7bf7e031a20bff2664f4d443bc039f89068c1253365d9b02703573bdadce8a1a09c6876379a362318526d44c501a47c7efafbe
SSDEEP

3072:WPXkW9G8ZTK/a9LhuctP81VlnYV1+vnDKMG/Ygxdf80AeRcL5:WPXkW9pF59l1JwDFvnD2Xf80AnF

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  81c889741b0aeee644495da9e89b0198_JaffaCakes118
- Size
  
  151KB
- MD5
  
  81c889741b0aeee644495da9e89b0198
- SHA1
  
  ab1d6baff6b2252406b7ca9065d3e0417de90bea
- SHA256
  
  7fefe0ffc332900a888aeb763e845bb5d9198c5756d812f27d45aa43e6013477
- SHA512
  
  7d752f09558fc20482dc38a26f7bf7e031a20bff2664f4d443bc039f89068c1253365d9b02703573bdadce8a1a09c6876379a362318526d44c501a47c7efafbe
- SSDEEP
  
  3072:WPXkW9G8ZTK/a9LhuctP81VlnYV1+vnDKMG/Ygxdf80AeRcL5:WPXkW9pF59l1JwDFvnD2Xf80AnF
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence