0213286c87e972c91c4268a49e13c046876f8af73f4ff3a0ba0800143bb3a31e | Triage

Sharing

General

Target

0213286c87e972c91c4268a49e13c046876f8af73f4ff3a0ba0800143bb3a31e
Size

341KB
Sample

220523-t4bjzsacdn
MD5

44faa59b941a6dea979c5574563b91d8
SHA1

acf2cbbf64bafa39833c7277416fb0daf246482d
SHA256

0213286c87e972c91c4268a49e13c046876f8af73f4ff3a0ba0800143bb3a31e
SHA512

6ebf6517b1da4bbdad4c18c34a11d52ff25978ced752dfee15570d095846666e8faeaa0854b4ce43e0cc09dbeb732cb1c126981b49385460da836f791a18a891

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  0213286c87e972c91c4268a49e13c046876f8af73f4ff3a0ba0800143bb3a31e
- Size
  
  341KB
- MD5
  
  44faa59b941a6dea979c5574563b91d8
- SHA1
  
  acf2cbbf64bafa39833c7277416fb0daf246482d
- SHA256
  
  0213286c87e972c91c4268a49e13c046876f8af73f4ff3a0ba0800143bb3a31e
- SHA512
  
  6ebf6517b1da4bbdad4c18c34a11d52ff25978ced752dfee15570d095846666e8faeaa0854b4ce43e0cc09dbeb732cb1c126981b49385460da836f791a18a891
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence