6bf50c89c0184b8148e4a3fdb684d050345d782edc83ed64ca8f0d35e5a73b36 | Triage

Sharing

General

Target

309951fbbe6aabc6c5eef68c813208a8_JaffaCakes118
Size

139KB
Sample

241010-sx5ntayakj
MD5

309951fbbe6aabc6c5eef68c813208a8
SHA1

4a0e97f4536ad37f1ecc8607dd97e20f131ee84c
SHA256

6bf50c89c0184b8148e4a3fdb684d050345d782edc83ed64ca8f0d35e5a73b36
SHA512

ee7cd112b83314ac9a5cc36fe86f7bf27c70f5bc39852032b3e133642d2629032e7d4371fb3d160f5bcb396c643af16fc06ac2d6aae11cbf5812faa0334c9b9e
SSDEEP

3072:Iqzdr6z6nO+LtZq20qmn88XVHN4tSlbfEG+:IIr6z69F0qUTHHl

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  309951fbbe6aabc6c5eef68c813208a8_JaffaCakes118
- Size
  
  139KB
- MD5
  
  309951fbbe6aabc6c5eef68c813208a8
- SHA1
  
  4a0e97f4536ad37f1ecc8607dd97e20f131ee84c
- SHA256
  
  6bf50c89c0184b8148e4a3fdb684d050345d782edc83ed64ca8f0d35e5a73b36
- SHA512
  
  ee7cd112b83314ac9a5cc36fe86f7bf27c70f5bc39852032b3e133642d2629032e7d4371fb3d160f5bcb396c643af16fc06ac2d6aae11cbf5812faa0334c9b9e
- SSDEEP
  
  3072:Iqzdr6z6nO+LtZq20qmn88XVHN4tSlbfEG+:IIr6z69F0qUTHHl
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence