General

  • Target

    018e88b8335dbe54982f229ec1358f01226c36669f2bcd21eee2a8830a880e51

  • Size

    328KB

  • Sample

    220523-xtpweafegk

  • MD5

    462cc2186bc9c17aca294f17a6d06c7c

  • SHA1

    23f9405ac800f61c27f390c4f3e7d6f4b8986210

  • SHA256

    018e88b8335dbe54982f229ec1358f01226c36669f2bcd21eee2a8830a880e51

  • SHA512

    ac6b233e3f52fd384d42f7069132b202dde69011678f9cff45ac062dc3ac496c7eb003533097f98d756d3b91739c07b9fec8d4c4e9da0a20843036c0494508e9

Malware Config

Targets

    • Target

      018e88b8335dbe54982f229ec1358f01226c36669f2bcd21eee2a8830a880e51

    • Size

      328KB

    • MD5

      462cc2186bc9c17aca294f17a6d06c7c

    • SHA1

      23f9405ac800f61c27f390c4f3e7d6f4b8986210

    • SHA256

      018e88b8335dbe54982f229ec1358f01226c36669f2bcd21eee2a8830a880e51

    • SHA512

      ac6b233e3f52fd384d42f7069132b202dde69011678f9cff45ac062dc3ac496c7eb003533097f98d756d3b91739c07b9fec8d4c4e9da0a20843036c0494508e9

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Bootkit

1
T1067

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks