5c02659bd72a75bd8cb27ec0ff042e2c3ced1a15c51d39e03f45e476488f67d0 | Triage

Sharing

General

Target

dbaa2eef998b55d946faadd124f5d1e4_JaffaCakes118
Size

332KB
Sample

240912-c4e4qsxard
MD5

dbaa2eef998b55d946faadd124f5d1e4
SHA1

56823b6a6ef18d43460c0f5433358c542cea691d
SHA256

5c02659bd72a75bd8cb27ec0ff042e2c3ced1a15c51d39e03f45e476488f67d0
SHA512

5ca14c345a2bbcd4f3b348cba8c4dc0804b1a46749f1876120a90b4d7ab5068c148ea7172020433bddba444846b0e9025fd0b8cf77e899f0087fc35d8987733f
SSDEEP

6144:5Tzh33gk+M2zZtCwyC82n+aC1meyUGimMx/BBR12ZzmF+NIivMAXafC9ii9:xJ3gptCSNW1meyUGpS/R12eHiEAKfY

Score

7^/10

aspackv2 bootkit discovery persistence

Malware Config

Targets

- Target
  
  dbaa2eef998b55d946faadd124f5d1e4_JaffaCakes118
- Size
  
  332KB
- MD5
  
  dbaa2eef998b55d946faadd124f5d1e4
- SHA1
  
  56823b6a6ef18d43460c0f5433358c542cea691d
- SHA256
  
  5c02659bd72a75bd8cb27ec0ff042e2c3ced1a15c51d39e03f45e476488f67d0
- SHA512
  
  5ca14c345a2bbcd4f3b348cba8c4dc0804b1a46749f1876120a90b4d7ab5068c148ea7172020433bddba444846b0e9025fd0b8cf77e899f0087fc35d8987733f
- SSDEEP
  
  6144:5Tzh33gk+M2zZtCwyC82n+aC1meyUGimMx/BBR12ZzmF+NIivMAXafC9ii9:xJ3gptCSNW1meyUGpS/R12eHiEAKfY
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2