d3cdc591efb82cc38574422dca5a46702656f7c8282bfe1a3d989c93003ce7b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2331666b5100ee2f1ecdd02fbaece10_JaffaCakes118
Size

132KB
Sample

240915-lscznsxcrh
MD5

e2331666b5100ee2f1ecdd02fbaece10
SHA1

8f8bbc9150b732a378e44980fa2bc2bbd87ec70c
SHA256

d3cdc591efb82cc38574422dca5a46702656f7c8282bfe1a3d989c93003ce7b4
SHA512

313da5b597c940cd4c7782a745a08c2426810c40502bbdf0b8eb83e779f8abc1d2413e9a171ef738f3484f3a792804d7ac8d21e0d6885ab437ec90c441fe4e99
SSDEEP

1536:P5tB5H0a5fFoAmgiEqWcCGlPUCUKQQb8mv8Y+RdMo4dbcZOYgsJBYMfvivlPozdL:/vUaFPmgRMNlPTGQQm6ytwZEsrYkK4

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  e2331666b5100ee2f1ecdd02fbaece10_JaffaCakes118
- Size
  
  132KB
- MD5
  
  e2331666b5100ee2f1ecdd02fbaece10
- SHA1
  
  8f8bbc9150b732a378e44980fa2bc2bbd87ec70c
- SHA256
  
  d3cdc591efb82cc38574422dca5a46702656f7c8282bfe1a3d989c93003ce7b4
- SHA512
  
  313da5b597c940cd4c7782a745a08c2426810c40502bbdf0b8eb83e779f8abc1d2413e9a171ef738f3484f3a792804d7ac8d21e0d6885ab437ec90c441fe4e99
- SSDEEP
  
  1536:P5tB5H0a5fFoAmgiEqWcCGlPUCUKQQb8mv8Y+RdMo4dbcZOYgsJBYMfvivlPozdL:/vUaFPmgRMNlPTGQQm6ytwZEsrYkK4
Score

6^/10

bootkit persistence discovery
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2