c291d6e33c1015fb4020f4c09fe2db8ca8c5022e313903d9528eeb98e5ad8af7 | Triage

Sharing

General

Target

f6ead50d7b4f72cca4a083b8ab19c772_JaffaCakes118
Size

1.1MB
Sample

240925-1mdrcaselg
MD5

f6ead50d7b4f72cca4a083b8ab19c772
SHA1

9f77dade6ad59e06bcc5aa422040c83df82719aa
SHA256

c291d6e33c1015fb4020f4c09fe2db8ca8c5022e313903d9528eeb98e5ad8af7
SHA512

4b89706292b0775908a4900288db277da90120c862434653049da2dc79f962b8ed018568eaec7e0fc61c7824d757ccc3ff875b83dd99f6d9658c2daec9589091
SSDEEP

24576:I+9QfDKCB8RwFJhRtg4UszVgC04Kue19YDc0GmcO6A+q7MP+h25Yc:I2QrKv65FRM

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  f6ead50d7b4f72cca4a083b8ab19c772_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  f6ead50d7b4f72cca4a083b8ab19c772
- SHA1
  
  9f77dade6ad59e06bcc5aa422040c83df82719aa
- SHA256
  
  c291d6e33c1015fb4020f4c09fe2db8ca8c5022e313903d9528eeb98e5ad8af7
- SHA512
  
  4b89706292b0775908a4900288db277da90120c862434653049da2dc79f962b8ed018568eaec7e0fc61c7824d757ccc3ff875b83dd99f6d9658c2daec9589091
- SSDEEP
  
  24576:I+9QfDKCB8RwFJhRtg4UszVgC04Kue19YDc0GmcO6A+q7MP+h25Yc:I2QrKv65FRM
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2