tmp

General
Target

tmp

Size

4MB

Sample

220521-rmz5xahfb9

Score
8 /10
MD5

5c32a7b913fdf22a2f3d81f7b5234bf6

SHA1

de8c6c01fb843dd56f5d57f8537fa26ecb8f281a

SHA256

d804e36628f5760ecbf0b3559a540d0d65e482094595b6917b51b8c93a1034f6

SHA512

2f350548a3ffcc9c20d008467aaf8f424e198ede49e0f556ec676175f437f2d764b0799686ce4bfe966906b2036bb0efd37e583531022ad0889a1128401abefe

Malware Config
Targets
Target

tmp

MD5

5c32a7b913fdf22a2f3d81f7b5234bf6

Filesize

4MB

Score
8/10
SHA1

de8c6c01fb843dd56f5d57f8537fa26ecb8f281a

SHA256

d804e36628f5760ecbf0b3559a540d0d65e482094595b6917b51b8c93a1034f6

SHA512

2f350548a3ffcc9c20d008467aaf8f424e198ede49e0f556ec676175f437f2d764b0799686ce4bfe966906b2036bb0efd37e583531022ad0889a1128401abefe

Tags

Signatures

  • Executes dropped EXE

  • Loads dropped DLL

  • Writes to the Master Boot Record (MBR)

    Description

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    Tags

    TTPs

    Bootkit

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        8/10

                        behavioral2

                        8/10