019d31c99a7d8b1e7ee5331c4d9c39ca9ed5e7704bbf9702c5f8063fc11d9760 | Triage

Sharing

General

Target

019d31c99a7d8b1e7ee5331c4d9c39ca9ed5e7704bbf9702c5f8063fc11d9760
Size

242KB
Sample

220523-xhpfhaehdp
MD5

0dab5b6a1b1f3ca627df7ae82d643524
SHA1

f799e2e96b966073e53503261747040ae1a0399b
SHA256

019d31c99a7d8b1e7ee5331c4d9c39ca9ed5e7704bbf9702c5f8063fc11d9760
SHA512

a8527be10f3da1f48650faca223ca8b1176bcef0da71c38d2565093d0ac2bc79f563ce59bafca94182d7cd0b0386b35cb1dc11f966921afd56a4f1c9c31986ba

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  019d31c99a7d8b1e7ee5331c4d9c39ca9ed5e7704bbf9702c5f8063fc11d9760
- Size
  
  242KB
- MD5
  
  0dab5b6a1b1f3ca627df7ae82d643524
- SHA1
  
  f799e2e96b966073e53503261747040ae1a0399b
- SHA256
  
  019d31c99a7d8b1e7ee5331c4d9c39ca9ed5e7704bbf9702c5f8063fc11d9760
- SHA512
  
  a8527be10f3da1f48650faca223ca8b1176bcef0da71c38d2565093d0ac2bc79f563ce59bafca94182d7cd0b0386b35cb1dc11f966921afd56a4f1c9c31986ba
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence