4496c686ea14878884bb199ade69acd7c4782e5daea7dd5e36992c7e2313bcf2 | Triage

Sharing

General

Target

eacb0f93b7bc04647154e699b0777ba9_JaffaCakes118
Size

125KB
Sample

240919-hmgtwswbmh
MD5

eacb0f93b7bc04647154e699b0777ba9
SHA1

510fe067d5f17180cd145f03fcb37e416b92247c
SHA256

4496c686ea14878884bb199ade69acd7c4782e5daea7dd5e36992c7e2313bcf2
SHA512

a51755a0d059190212f040de551156917aeaa87c68cd29633fbb51f70ca1c6335259e984c2905f7cf074ab528362854b6bdd81a9e2a6a1ff2968366eb6a26dbe
SSDEEP

3072:P8GXegv7A1hUsDT4kURmZ8JC5qnRqzJ2ayDh8pqKZ:P8GXeg+T4QZb+D+p

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  eacb0f93b7bc04647154e699b0777ba9_JaffaCakes118
- Size
  
  125KB
- MD5
  
  eacb0f93b7bc04647154e699b0777ba9
- SHA1
  
  510fe067d5f17180cd145f03fcb37e416b92247c
- SHA256
  
  4496c686ea14878884bb199ade69acd7c4782e5daea7dd5e36992c7e2313bcf2
- SHA512
  
  a51755a0d059190212f040de551156917aeaa87c68cd29633fbb51f70ca1c6335259e984c2905f7cf074ab528362854b6bdd81a9e2a6a1ff2968366eb6a26dbe
- SSDEEP
  
  3072:P8GXegv7A1hUsDT4kURmZ8JC5qnRqzJ2ayDh8pqKZ:P8GXeg+T4QZb+D+p
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2