3aec09c7a95f1376d2e6eb52ebe478055615179ed018edd79e269679d53a25ba | Triage

Sharing

General

Target

26f43004e1859dda95232ce7d1d06d4d_JaffaCakes118
Size

444KB
Sample

241008-3bekls1hnd
MD5

26f43004e1859dda95232ce7d1d06d4d
SHA1

bdf369d06da697c37281587a609b2f95801341b8
SHA256

3aec09c7a95f1376d2e6eb52ebe478055615179ed018edd79e269679d53a25ba
SHA512

8b4af824d2e8f67b29625db7bbc8249c8ad6fde0600e54707bef98b7e72e593a5a544b6906741575c29edb2d8ea86279ed2b7586e81f13aba285dfe683e309bf
SSDEEP

6144:4B1xRlB+g8aaVFFL3MIuDZWneyk+HrI7H2QuF0RBfqMJX+VDD3UHkJ5I2nn:qTIg8HXp3MIuD4eCrf4BfqMJO8EJO2n

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  26f43004e1859dda95232ce7d1d06d4d_JaffaCakes118
- Size
  
  444KB
- MD5
  
  26f43004e1859dda95232ce7d1d06d4d
- SHA1
  
  bdf369d06da697c37281587a609b2f95801341b8
- SHA256
  
  3aec09c7a95f1376d2e6eb52ebe478055615179ed018edd79e269679d53a25ba
- SHA512
  
  8b4af824d2e8f67b29625db7bbc8249c8ad6fde0600e54707bef98b7e72e593a5a544b6906741575c29edb2d8ea86279ed2b7586e81f13aba285dfe683e309bf
- SSDEEP
  
  6144:4B1xRlB+g8aaVFFL3MIuDZWneyk+HrI7H2QuF0RBfqMJX+VDD3UHkJ5I2nn:qTIg8HXp3MIuD4eCrf4BfqMJO8EJO2n
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence