4b7bfeeab20f0886b51e038b1043cb02457f4e860dfe0bfffdd08bc61e80b780 | Triage

Sharing

General

Target

81c53f50626e6a234700e3807e7b5d18_JaffaCakes118
Size

153KB
Sample

240801-zzx53s1aqd
MD5

81c53f50626e6a234700e3807e7b5d18
SHA1

5a9a4ef94f4089a3f007a7c575a4a64bd354e13e
SHA256

4b7bfeeab20f0886b51e038b1043cb02457f4e860dfe0bfffdd08bc61e80b780
SHA512

f14bb3291624259e4626eef0bee973e6187ad3663b426f9d9291f9ffa83cce4fdcc8c8f6af5eb5fb3ddbe8edcd2e1ac48546e66afc6634ceebcf26d86c1f551c
SSDEEP

3072:O96HM0XU+aDe5UEGJSKz7ccRJMM3Ojl5Mr5LD1tABi1JA:un+aCyIK3ccnMxjQ5lW

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  81c53f50626e6a234700e3807e7b5d18_JaffaCakes118
- Size
  
  153KB
- MD5
  
  81c53f50626e6a234700e3807e7b5d18
- SHA1
  
  5a9a4ef94f4089a3f007a7c575a4a64bd354e13e
- SHA256
  
  4b7bfeeab20f0886b51e038b1043cb02457f4e860dfe0bfffdd08bc61e80b780
- SHA512
  
  f14bb3291624259e4626eef0bee973e6187ad3663b426f9d9291f9ffa83cce4fdcc8c8f6af5eb5fb3ddbe8edcd2e1ac48546e66afc6634ceebcf26d86c1f551c
- SSDEEP
  
  3072:O96HM0XU+aDe5UEGJSKz7ccRJMM3Ojl5Mr5LD1tABi1JA:un+aCyIK3ccnMxjQ5lW
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2