5759c68e3a2de8b1c3d0b7354dee1649e866db095a528d27258755117dde221f | Triage

Sharing

General

Target

ead1f95448133e4d40f64b9ba0c5452d_JaffaCakes118
Size

8.1MB
Sample

240919-hynftawfpa
MD5

ead1f95448133e4d40f64b9ba0c5452d
SHA1

db53670ae742cc2feee28103001844e225871788
SHA256

5759c68e3a2de8b1c3d0b7354dee1649e866db095a528d27258755117dde221f
SHA512

33e611baf861b40c13519c624f6440a6129781c5ea6dd677315d14aa712e6a4a00be176cbbd349dc96ce05fbb9c538799a5d1d7c3cac5a95cb782dde56ae2a9d
SSDEEP

196608:aGZLI7RTol+Q2Lg5Eds4iHgDuEXnfIuf/tKWc6adHog/NTCxFD:FKhjvds4SmjXTf/tKW/adIsNTCx5

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  ead1f95448133e4d40f64b9ba0c5452d_JaffaCakes118
- Size
  
  8.1MB
- MD5
  
  ead1f95448133e4d40f64b9ba0c5452d
- SHA1
  
  db53670ae742cc2feee28103001844e225871788
- SHA256
  
  5759c68e3a2de8b1c3d0b7354dee1649e866db095a528d27258755117dde221f
- SHA512
  
  33e611baf861b40c13519c624f6440a6129781c5ea6dd677315d14aa712e6a4a00be176cbbd349dc96ce05fbb9c538799a5d1d7c3cac5a95cb782dde56ae2a9d
- SSDEEP
  
  196608:aGZLI7RTol+Q2Lg5Eds4iHgDuEXnfIuf/tKWc6adHog/NTCxFD:FKhjvds4SmjXTf/tKW/adIsNTCx5
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence