00454f4cbafa833ccd9c8279d5a22f9d8a213e187dba492f32a398803f6632e5 | Triage

Sharing

General

Target

00454f4cbafa833ccd9c8279d5a22f9d8a213e187dba492f32a398803f6632e5
Size

328KB
Sample

220516-zf8sgabdar
MD5

16140a83308229a32563dd2d53ccaa85
SHA1

4f253c52282eb4413891b4fa9469d4d43f0256f6
SHA256

00454f4cbafa833ccd9c8279d5a22f9d8a213e187dba492f32a398803f6632e5
SHA512

1d7f665515027cde256976c249d04fc3a0398bab00d732f73906cf713a06e8389f8b69aa698f006d9840ab122bb02184fce45b5511b3f43fbc7624fb37b51c39

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  00454f4cbafa833ccd9c8279d5a22f9d8a213e187dba492f32a398803f6632e5
- Size
  
  328KB
- MD5
  
  16140a83308229a32563dd2d53ccaa85
- SHA1
  
  4f253c52282eb4413891b4fa9469d4d43f0256f6
- SHA256
  
  00454f4cbafa833ccd9c8279d5a22f9d8a213e187dba492f32a398803f6632e5
- SHA512
  
  1d7f665515027cde256976c249d04fc3a0398bab00d732f73906cf713a06e8389f8b69aa698f006d9840ab122bb02184fce45b5511b3f43fbc7624fb37b51c39
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence