01a3286168b1d040318a0da75fc9f4e9532f303fc3e5492f4a7ebc88014cb673 | Triage

Sharing

General

Target

01a3286168b1d040318a0da75fc9f4e9532f303fc3e5492f4a7ebc88014cb673
Size

724KB
Sample

220523-xdpwgabgd6
MD5

215b0d00078ac8228f971020fc615df2
SHA1

a477a08bb43ebf76215d7a747e43efa77f24aeea
SHA256

01a3286168b1d040318a0da75fc9f4e9532f303fc3e5492f4a7ebc88014cb673
SHA512

8225efbe2af3f779a6064255c294d729e6efc2ae69c5edff5b522aaee4d31e53a261c88ac8457475bc3d28f89b7c9cdee11558630d503a1def2ae4a62d9d32f4

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  01a3286168b1d040318a0da75fc9f4e9532f303fc3e5492f4a7ebc88014cb673
- Size
  
  724KB
- MD5
  
  215b0d00078ac8228f971020fc615df2
- SHA1
  
  a477a08bb43ebf76215d7a747e43efa77f24aeea
- SHA256
  
  01a3286168b1d040318a0da75fc9f4e9532f303fc3e5492f4a7ebc88014cb673
- SHA512
  
  8225efbe2af3f779a6064255c294d729e6efc2ae69c5edff5b522aaee4d31e53a261c88ac8457475bc3d28f89b7c9cdee11558630d503a1def2ae4a62d9d32f4
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence