General
-
Target
tmp
-
Size
4.4MB
-
Sample
220521-rww5lschep
-
MD5
f5bc0cf4ce546079338e3c6cc22a7738
-
SHA1
cb327d83fd96b4fd0153cd4d9efd28e83afac754
-
SHA256
85267503850ba33babd9f62dd7810f7d4484d1c780e67d262942789b9e928632
-
SHA512
d02ae5fd3075bcb7585f01348e883d9332d39fb543efbad1aeaff089d28c50d0c4444d41ebf013719058554babd82af5e010211788e5f50370ae99baa3f580a3
Static task
static1
Behavioral task
behavioral1
Sample
tmp.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
tmp.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
tmp
-
Size
4.4MB
-
MD5
f5bc0cf4ce546079338e3c6cc22a7738
-
SHA1
cb327d83fd96b4fd0153cd4d9efd28e83afac754
-
SHA256
85267503850ba33babd9f62dd7810f7d4484d1c780e67d262942789b9e928632
-
SHA512
d02ae5fd3075bcb7585f01348e883d9332d39fb543efbad1aeaff089d28c50d0c4444d41ebf013719058554babd82af5e010211788e5f50370ae99baa3f580a3
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-