003404eba4e577bf566b5d969504ed804a148179fc4d796b7c56f44fbf16a930 | Triage

Sharing

General

Target

003404eba4e577bf566b5d969504ed804a148179fc4d796b7c56f44fbf16a930
Size

328KB
Sample

220516-zwh7rahcb8
MD5

32c8e613c053720cfb68fd2dab27482d
SHA1

49e5c4c1563be915578734a0dda3011a5bf2cda9
SHA256

003404eba4e577bf566b5d969504ed804a148179fc4d796b7c56f44fbf16a930
SHA512

e6c309ad3bd4614b6d8b2292ab77e895176ba1cdb1d883d24db855a92c323ce88c512fd6601fa793ffc0c4ffa4e0f4a80984ff3b763045936d2874e8b16aee0c

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  003404eba4e577bf566b5d969504ed804a148179fc4d796b7c56f44fbf16a930
- Size
  
  328KB
- MD5
  
  32c8e613c053720cfb68fd2dab27482d
- SHA1
  
  49e5c4c1563be915578734a0dda3011a5bf2cda9
- SHA256
  
  003404eba4e577bf566b5d969504ed804a148179fc4d796b7c56f44fbf16a930
- SHA512
  
  e6c309ad3bd4614b6d8b2292ab77e895176ba1cdb1d883d24db855a92c323ce88c512fd6601fa793ffc0c4ffa4e0f4a80984ff3b763045936d2874e8b16aee0c
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence