fb843b3a48d44aa116cb3e06dffc39da97d6cf1485d8e8e4ee0345a0f0c86db4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b46937098aa7df60ae3f99011eab6d37_JaffaCakes118
Size

361KB
Sample

240821-wa7fnssard
MD5

b46937098aa7df60ae3f99011eab6d37
SHA1

c692736b3bf5b91c2860fc9ef291c3a630b96b30
SHA256

fb843b3a48d44aa116cb3e06dffc39da97d6cf1485d8e8e4ee0345a0f0c86db4
SHA512

28345243b31541857c41e92a4ce6fa4f97ee2cde8f0db58dd4e51633e30d2f49708ace59dcdcb75a6a09fa093cf407305e3f318792be4f9092aaca09df8ce640
SSDEEP

6144:CZtRjiGaRO22aIkbG6Z0e7HdYPOZ5FyZGONif6MDn+aCP0vdZhhL0MT1DcR5bRd1:wzGb2+b7V7NFyMrWPCZHB1QRD

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  b46937098aa7df60ae3f99011eab6d37_JaffaCakes118
- Size
  
  361KB
- MD5
  
  b46937098aa7df60ae3f99011eab6d37
- SHA1
  
  c692736b3bf5b91c2860fc9ef291c3a630b96b30
- SHA256
  
  fb843b3a48d44aa116cb3e06dffc39da97d6cf1485d8e8e4ee0345a0f0c86db4
- SHA512
  
  28345243b31541857c41e92a4ce6fa4f97ee2cde8f0db58dd4e51633e30d2f49708ace59dcdcb75a6a09fa093cf407305e3f318792be4f9092aaca09df8ce640
- SSDEEP
  
  6144:CZtRjiGaRO22aIkbG6Z0e7HdYPOZ5FyZGONif6MDn+aCP0vdZhhL0MT1DcR5bRd1:wzGb2+b7V7NFyMrWPCZHB1QRD
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2