35c78369514f7195f955ae273e72731da7a51e59f3d9ef59228a82574c30e294 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

BruteFLIX/...IX.exe

windows7_x64

BruteFLIX/...IX.exe

windows10_x64

Sharing

General

Target

BruteFLIX.rar
Size

3.5MB
Sample

210212-99t517xnhj
MD5

7f8ca72361a5075277c4cb18de9dde32
SHA1

f6cdf9a74b9c36f287e66b8554eca32df90dd91a
SHA256

35c78369514f7195f955ae273e72731da7a51e59f3d9ef59228a82574c30e294
SHA512

4da552e42844bb946aaa42a36dba5e9f6be76aeba4b2effc0a076513382178324ba6cb7995e8f231ba172117705c3cb560c2cc62a535079b8e36680034946a00

Score

8^/10

agilenet bootkit ransomware

Static task

static1

Behavioral task

behavioral1

Sample

BruteFLIX/BruteFLIX.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

BruteFLIX/BruteFLIX.exe

Resource

win10v20201028

bootkit ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  BruteFLIX/BruteFLIX.exe
- Size
  
  5.5MB
- MD5
  
  c5611d2c706ca2b77176c55cbc72da0e
- SHA1
  
  aece04b56a8f862cf1fe4e7f70da8bba47db1576
- SHA256
  
  71ef1a4fa72e83f07f6e1a2dec75f4ed1fa50dc1212a6d5af3c2ed3ce89cd8ca
- SHA512
  
  bfaadf15b76a9a084c66dc6dcd6efae27498ada4e11bfe127888a96599b421f040f3b7efc75aea649b31d44745e0b52976bccf12806f65fbe5a3177a86e8cabf
Score

8^/10

bootkit ransomware
- Modifies WinLogon to allow AutoLogon
  Enables rebooting of the machine without requiring login credentials.
  ransomware bootkit
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

bootkitransomware

© 2018-2024

Terms | Privacy