65f2c0e4b11de02c7ef7980e9282d8871b404b8daa3d7579df74a1c22e93957b | Triage

Sharing

General

Target

838b95338fb9d193dcb11c8b81664a10_JaffaCakes118
Size

172KB
Sample

240809-zt8dvssgpg
MD5

838b95338fb9d193dcb11c8b81664a10
SHA1

51dd55131e38013d0187c618cd400650ad5ad59a
SHA256

65f2c0e4b11de02c7ef7980e9282d8871b404b8daa3d7579df74a1c22e93957b
SHA512

8dec2298a78e89710ca868e26f17481bfd55cb527651c0cfeed0fe23731654fe1c62aadc8a824fab232fdf0fde5d2870186c3492a898977bb8523ab9aef5a565
SSDEEP

3072:MJu6wbnU/iQKJ2/P08eTHJNt4/ddAjbTnA5z0lpzoYdOC89UQZW0Oc5:MJybn0KkDeDDt4/jKYsICQWNc5

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  838b95338fb9d193dcb11c8b81664a10_JaffaCakes118
- Size
  
  172KB
- MD5
  
  838b95338fb9d193dcb11c8b81664a10
- SHA1
  
  51dd55131e38013d0187c618cd400650ad5ad59a
- SHA256
  
  65f2c0e4b11de02c7ef7980e9282d8871b404b8daa3d7579df74a1c22e93957b
- SHA512
  
  8dec2298a78e89710ca868e26f17481bfd55cb527651c0cfeed0fe23731654fe1c62aadc8a824fab232fdf0fde5d2870186c3492a898977bb8523ab9aef5a565
- SSDEEP
  
  3072:MJu6wbnU/iQKJ2/P08eTHJNt4/ddAjbTnA5z0lpzoYdOC89UQZW0Oc5:MJybn0KkDeDDt4/jKYsICQWNc5
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence