609d5581bb997ba47fb4309cad92532dfb70a184fd942e24e992de0a375c2089 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de243821e790ab7e2a4a949cfcf30086_JaffaCakes118
Size

1.1MB
Sample

240913-lcyw7swfpe
MD5

de243821e790ab7e2a4a949cfcf30086
SHA1

b280212ef9b8b3c4a304e6949f8414082d90f44d
SHA256

609d5581bb997ba47fb4309cad92532dfb70a184fd942e24e992de0a375c2089
SHA512

36c2d9c982275d489f3031066f9bde3ee37760f9cd3adafe4c2975e1dd2c91c8adf426f9660d17402b6ec011376708d79beb2ca0ab91e2903fb77b05066955f8
SSDEEP

24576:DoB6xQ33I2MYScS6wvwifXRFLZLIvUzjZCWJJouQBy7:DOQhTjTMNg

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  de243821e790ab7e2a4a949cfcf30086_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  de243821e790ab7e2a4a949cfcf30086
- SHA1
  
  b280212ef9b8b3c4a304e6949f8414082d90f44d
- SHA256
  
  609d5581bb997ba47fb4309cad92532dfb70a184fd942e24e992de0a375c2089
- SHA512
  
  36c2d9c982275d489f3031066f9bde3ee37760f9cd3adafe4c2975e1dd2c91c8adf426f9660d17402b6ec011376708d79beb2ca0ab91e2903fb77b05066955f8
- SSDEEP
  
  24576:DoB6xQ33I2MYScS6wvwifXRFLZLIvUzjZCWJJouQBy7:DOQhTjTMNg
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence