General
Target

c31103ee658b926ee2feb90cd148f183f2bdfa4b439236c0724abffb4d5fe8a6

Size

3MB

Sample

220520-dk2n3ahfgn

Score
8/10
MD5

0b0925123ee395a6c62d9b9efb9fc9d6

SHA1

a682b1710b6db2bda445f123d5a0825e50d7361d

SHA256

c31103ee658b926ee2feb90cd148f183f2bdfa4b439236c0724abffb4d5fe8a6

SHA512

6c4221d56de814406d7b4c28d7d2b5314e1155d3fac7b328a6ddbadb1068b23b9fc81370547fa1bc3c172da79817d9c28e6c40967144530916515ade523e973b

Malware Config
Targets
Target

c31103ee658b926ee2feb90cd148f183f2bdfa4b439236c0724abffb4d5fe8a6

MD5

0b0925123ee395a6c62d9b9efb9fc9d6

Filesize

3MB

Score
8/10
SHA1

a682b1710b6db2bda445f123d5a0825e50d7361d

SHA256

c31103ee658b926ee2feb90cd148f183f2bdfa4b439236c0724abffb4d5fe8a6

SHA512

6c4221d56de814406d7b4c28d7d2b5314e1155d3fac7b328a6ddbadb1068b23b9fc81370547fa1bc3c172da79817d9c28e6c40967144530916515ade523e973b

Tags

Signatures

  • VMProtect packed file

    Description

    Detects executables packed with VMProtect commercial packer.

    Tags

  • Writes to the Master Boot Record (MBR)

    Description

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    Tags

    TTPs

    Bootkit

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Discovery
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                    Privilege Escalation
                      Tasks

                      static1

                      Score
                      8/10

                      behavioral1

                      Score
                      8/10

                      behavioral2

                      Score
                      8/10