tmp

General
Target

tmp

Size

4MB

Sample

220521-rww5lschep

Score
8 /10
MD5

f5bc0cf4ce546079338e3c6cc22a7738

SHA1

cb327d83fd96b4fd0153cd4d9efd28e83afac754

SHA256

85267503850ba33babd9f62dd7810f7d4484d1c780e67d262942789b9e928632

SHA512

d02ae5fd3075bcb7585f01348e883d9332d39fb543efbad1aeaff089d28c50d0c4444d41ebf013719058554babd82af5e010211788e5f50370ae99baa3f580a3

Malware Config
Targets
Target

tmp

MD5

f5bc0cf4ce546079338e3c6cc22a7738

Filesize

4MB

Score
8/10
SHA1

cb327d83fd96b4fd0153cd4d9efd28e83afac754

SHA256

85267503850ba33babd9f62dd7810f7d4484d1c780e67d262942789b9e928632

SHA512

d02ae5fd3075bcb7585f01348e883d9332d39fb543efbad1aeaff089d28c50d0c4444d41ebf013719058554babd82af5e010211788e5f50370ae99baa3f580a3

Tags

Signatures

  • Executes dropped EXE

  • Loads dropped DLL

  • Writes to the Master Boot Record (MBR)

    Description

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    Tags

    TTPs

    Bootkit

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        8/10

                        behavioral2

                        8/10