6e276c12e6edc0e2e28d0dd6144f9a997899cb3806d3f7619a24d69de0c66bb5 | Triage

Sharing

General

Target

84494fe8ef423e3ff391db59aa536344_JaffaCakes118
Size

302KB
Sample

241101-jrpwqsyfrk
MD5

84494fe8ef423e3ff391db59aa536344
SHA1

e49654e24c29f4541022e482b9b75c5c30e36a6c
SHA256

6e276c12e6edc0e2e28d0dd6144f9a997899cb3806d3f7619a24d69de0c66bb5
SHA512

e2f105ef00a1dad662345693976e91faea3a91a101476f7579e9c3cfb1e7d8bbe539538f56c6257e7f56ab506af3a95f1322d8eff45755638eaa27e96cedead0
SSDEEP

6144:A0D/tKHqWDHoK1q2c2B7n2gcvIPZVhlcFOABcnwJwX1ZUCsT3QL5u8:A0gqWToOq2ceSgwYZVfYc/lZpS3Qdu8

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  84494fe8ef423e3ff391db59aa536344_JaffaCakes118
- Size
  
  302KB
- MD5
  
  84494fe8ef423e3ff391db59aa536344
- SHA1
  
  e49654e24c29f4541022e482b9b75c5c30e36a6c
- SHA256
  
  6e276c12e6edc0e2e28d0dd6144f9a997899cb3806d3f7619a24d69de0c66bb5
- SHA512
  
  e2f105ef00a1dad662345693976e91faea3a91a101476f7579e9c3cfb1e7d8bbe539538f56c6257e7f56ab506af3a95f1322d8eff45755638eaa27e96cedead0
- SSDEEP
  
  6144:A0D/tKHqWDHoK1q2c2B7n2gcvIPZVhlcFOABcnwJwX1ZUCsT3QL5u8:A0gqWToOq2ceSgwYZVfYc/lZpS3Qdu8
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2