007615f250772096c731cad87d191e10b8378c3f67a678256bc97a1327e02ea1 | Triage

Sharing

General

Target

007615f250772096c731cad87d191e10b8378c3f67a678256bc97a1327e02ea1
Size

339KB
Sample

220516-yfghjsghfn
MD5

1a1275789fb92e575d361052fbb508bd
SHA1

3236ce0f2aead0644aa45cfc3fd479a7213c6a37
SHA256

007615f250772096c731cad87d191e10b8378c3f67a678256bc97a1327e02ea1
SHA512

0518e1b27b6020bb8f5d9d5470186ff91ad0b7ce56adb8fb70fce26036f6ab0bc116d0bf764a9741be49910964a97166761c2198c24d09489f3d20490e76b2ff

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  007615f250772096c731cad87d191e10b8378c3f67a678256bc97a1327e02ea1
- Size
  
  339KB
- MD5
  
  1a1275789fb92e575d361052fbb508bd
- SHA1
  
  3236ce0f2aead0644aa45cfc3fd479a7213c6a37
- SHA256
  
  007615f250772096c731cad87d191e10b8378c3f67a678256bc97a1327e02ea1
- SHA512
  
  0518e1b27b6020bb8f5d9d5470186ff91ad0b7ce56adb8fb70fce26036f6ab0bc116d0bf764a9741be49910964a97166761c2198c24d09489f3d20490e76b2ff
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence