84346e04cde0593570d86f6f61811c3a68e916b71613e11ed1fa82f79cfb3f9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2dfb575eb8caa9eed647c9e190427b5_JaffaCakes118
Size

142KB
Sample

240907-1bcpxawdmm
MD5

d2dfb575eb8caa9eed647c9e190427b5
SHA1

ddd0dbe13aee125ad2d5b8fca6ede4f24334e18c
SHA256

84346e04cde0593570d86f6f61811c3a68e916b71613e11ed1fa82f79cfb3f9d
SHA512

7442855482335d8960e3acb6b63563ba00651c4b485374f08198ef20aacd3320ea6d2e5b991930bc7b22b34dcf31c39edc7d4dd3b8fbb06238d746a32bc1f8ae
SSDEEP

3072:YRaahMcdxAIH9vyiJQGMxDHF+4nhphTyqqdr5yD:YlvxVblMxDHltTyqI

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  d2dfb575eb8caa9eed647c9e190427b5_JaffaCakes118
- Size
  
  142KB
- MD5
  
  d2dfb575eb8caa9eed647c9e190427b5
- SHA1
  
  ddd0dbe13aee125ad2d5b8fca6ede4f24334e18c
- SHA256
  
  84346e04cde0593570d86f6f61811c3a68e916b71613e11ed1fa82f79cfb3f9d
- SHA512
  
  7442855482335d8960e3acb6b63563ba00651c4b485374f08198ef20aacd3320ea6d2e5b991930bc7b22b34dcf31c39edc7d4dd3b8fbb06238d746a32bc1f8ae
- SSDEEP
  
  3072:YRaahMcdxAIH9vyiJQGMxDHF+4nhphTyqqdr5yD:YlvxVblMxDHltTyqI
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence