967512d19d8f57c7443e848d63bef713b830a46fa0c68c5b4d38d2186e53ed9b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

950f8f219ea13de5bc7820b19dbd68c2_JaffaCakes118
Size

123KB
Sample

240814-hqlx1sydrg
MD5

950f8f219ea13de5bc7820b19dbd68c2
SHA1

bbfaf1be4674f988ebe6066eef0a7109ab8504d2
SHA256

967512d19d8f57c7443e848d63bef713b830a46fa0c68c5b4d38d2186e53ed9b
SHA512

276b402426d3993142c074a2f8f94debe77e94da6febac6af1cbc394e29943bcbb7e5e7b030eafcea401f767c10d46a8380f370276c76adbacb0b658789073d1
SSDEEP

1536:NUBrSeAJCLS9KPaVeQbg3VF+D7X+H2VXoqy6MA2grmufq8BMenXoxurkcoNM+XTU:N2LYC+9KPn3VF+y4XjsGWRxskjq+R

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  950f8f219ea13de5bc7820b19dbd68c2_JaffaCakes118
- Size
  
  123KB
- MD5
  
  950f8f219ea13de5bc7820b19dbd68c2
- SHA1
  
  bbfaf1be4674f988ebe6066eef0a7109ab8504d2
- SHA256
  
  967512d19d8f57c7443e848d63bef713b830a46fa0c68c5b4d38d2186e53ed9b
- SHA512
  
  276b402426d3993142c074a2f8f94debe77e94da6febac6af1cbc394e29943bcbb7e5e7b030eafcea401f767c10d46a8380f370276c76adbacb0b658789073d1
- SSDEEP
  
  1536:NUBrSeAJCLS9KPaVeQbg3VF+D7X+H2VXoqy6MA2grmufq8BMenXoxurkcoNM+XTU:N2LYC+9KPn3VF+y4XjsGWRxskjq+R
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2