Overview

overview

8

Static

static

8913e73fa3...2e.exe

windows7_x64

8

8913e73fa3...2e.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8913e73fa3935f88da00be03ed1d5a82e125b5553d2de8f85c8ead66d3b0632e

  • Size

    956KB

  • Sample

    220520-jjsyesgfd2

  • MD5

    4c75ac94ce30d24541a43e843ac22fc8

  • SHA1

    a987dcda2e42494d4afd86fab22bff39a47be87d

  • SHA256

    8913e73fa3935f88da00be03ed1d5a82e125b5553d2de8f85c8ead66d3b0632e

  • SHA512

    f28e47fe7dc992a1b9e5c535b2086989f4df850986976cabe8fd1af36ff42d9d1c233f82469ce7b2b96d55d1a8d04ef015dbae7b37b3c29af01204b75e9e408e

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      8913e73fa3935f88da00be03ed1d5a82e125b5553d2de8f85c8ead66d3b0632e

    • Size

      956KB

    • MD5

      4c75ac94ce30d24541a43e843ac22fc8

    • SHA1

      a987dcda2e42494d4afd86fab22bff39a47be87d

    • SHA256

      8913e73fa3935f88da00be03ed1d5a82e125b5553d2de8f85c8ead66d3b0632e

    • SHA512

      f28e47fe7dc992a1b9e5c535b2086989f4df850986976cabe8fd1af36ff42d9d1c233f82469ce7b2b96d55d1a8d04ef015dbae7b37b3c29af01204b75e9e408e

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks