a39109147044e7f471a2fcda1b671c47cb09ebb17d1d5ed45f6d10408d36b8ca | Triage

Sharing

General

Target

a022aafe52981c2b67d8db72b0654bb0_JaffaCakes118
Size

785KB
Sample

240816-14g54atekr
MD5

a022aafe52981c2b67d8db72b0654bb0
SHA1

7356ecf3eedc1475d1af1f8977acf6c7350b4c98
SHA256

a39109147044e7f471a2fcda1b671c47cb09ebb17d1d5ed45f6d10408d36b8ca
SHA512

c60658a84629eac8277c50a389f8488e81fb33d54c9a11d3fe22287550ca651b28afdd2f6d6e592e4e72ca0bc09d936a9fe751de3a35bef81cfc68dda761d931
SSDEEP

24576:GHpIxgcKpNlK8snnub9YGv/nx41x4OXcUfw:5/GlKLGv/nx41GONY

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  a022aafe52981c2b67d8db72b0654bb0_JaffaCakes118
- Size
  
  785KB
- MD5
  
  a022aafe52981c2b67d8db72b0654bb0
- SHA1
  
  7356ecf3eedc1475d1af1f8977acf6c7350b4c98
- SHA256
  
  a39109147044e7f471a2fcda1b671c47cb09ebb17d1d5ed45f6d10408d36b8ca
- SHA512
  
  c60658a84629eac8277c50a389f8488e81fb33d54c9a11d3fe22287550ca651b28afdd2f6d6e592e4e72ca0bc09d936a9fe751de3a35bef81cfc68dda761d931
- SSDEEP
  
  24576:GHpIxgcKpNlK8snnub9YGv/nx41x4OXcUfw:5/GlKLGv/nx41GONY
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2