1acef2f43253b5378a2fea58b71a45b698bff28ea4fdf70d11c56a4172e3f86c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9a70f4bf0d82a1dd89b0f80d2194e3c_JaffaCakes118
Size

155KB
Sample

240911-fkva4atdpp
MD5

d9a70f4bf0d82a1dd89b0f80d2194e3c
SHA1

d3bf88c2356e82e8ea36e961e1828d7873bdc727
SHA256

1acef2f43253b5378a2fea58b71a45b698bff28ea4fdf70d11c56a4172e3f86c
SHA512

8b34cf5c9cc2e37151348cbeb02be2d67bc4048dd2169f7864cacf75eeda40b023ba4b449d904c3d1d578f50c3ce870778206111baf3b370bea009bc60d96b03
SSDEEP

3072:th/2ocQbLDMJgCs7NNubbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVU7Ppt:th/2ocMLMgCsJiwvP6bQ7yMP+DE827xt

Score

7^/10

aspackv2 bootkit discovery persistence

Malware Config

Targets

- Target
  
  d9a70f4bf0d82a1dd89b0f80d2194e3c_JaffaCakes118
- Size
  
  155KB
- MD5
  
  d9a70f4bf0d82a1dd89b0f80d2194e3c
- SHA1
  
  d3bf88c2356e82e8ea36e961e1828d7873bdc727
- SHA256
  
  1acef2f43253b5378a2fea58b71a45b698bff28ea4fdf70d11c56a4172e3f86c
- SHA512
  
  8b34cf5c9cc2e37151348cbeb02be2d67bc4048dd2169f7864cacf75eeda40b023ba4b449d904c3d1d578f50c3ce870778206111baf3b370bea009bc60d96b03
- SSDEEP
  
  3072:th/2ocQbLDMJgCs7NNubbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVU7Ppt:th/2ocMLMgCsJiwvP6bQ7yMP+DE827xt
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2