000bd0e6b24858635e082bd4893f6c3347683bf4a3ba478b2dfc34ed1df0a66b | Triage

Sharing

General

Target

000bd0e6b24858635e082bd4893f6c3347683bf4a3ba478b2dfc34ed1df0a66b
Size

714KB
Sample

220516-1r69fsebam
MD5

1c4d6bb963ff98d974aad8ec3a61ee1c
SHA1

93970d9822a8c30ad5f14a70557d05adf18c052d
SHA256

000bd0e6b24858635e082bd4893f6c3347683bf4a3ba478b2dfc34ed1df0a66b
SHA512

46d191620e024dc6637b5f04fff884c35e0e8a85e9f224519b75c0bea8fda1227cfe3e167149c124a9dced80ce2fbf226d56015d3461f7ec587dea33c9199d63

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  000bd0e6b24858635e082bd4893f6c3347683bf4a3ba478b2dfc34ed1df0a66b
- Size
  
  714KB
- MD5
  
  1c4d6bb963ff98d974aad8ec3a61ee1c
- SHA1
  
  93970d9822a8c30ad5f14a70557d05adf18c052d
- SHA256
  
  000bd0e6b24858635e082bd4893f6c3347683bf4a3ba478b2dfc34ed1df0a66b
- SHA512
  
  46d191620e024dc6637b5f04fff884c35e0e8a85e9f224519b75c0bea8fda1227cfe3e167149c124a9dced80ce2fbf226d56015d3461f7ec587dea33c9199d63
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence