Overview

overview

6

Static

static

cf30bb977a...de.exe

windows7_x64

6

cf30bb977a...de.exe

windows10-2004_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf30bb977a3397d79ac55f800b760dd02020fdbcd35835a5ba77baae7ba8cfde

  • Size

    815KB

  • Sample

    220524-11axlsheh7

  • MD5

    de918532911821bda5aab1717774daa1

  • SHA1

    1332afd8ff680f5297fc3981f1c65d605979dcb0

  • SHA256

    cf30bb977a3397d79ac55f800b760dd02020fdbcd35835a5ba77baae7ba8cfde

  • SHA512

    5c995f46184668ca7515a69a07212095bcdd88f44f94c22743966498b3bed4487648bcdae0d7d259edf55823a962e0977f027da3340a1aff710c0872e9f49e9e

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      cf30bb977a3397d79ac55f800b760dd02020fdbcd35835a5ba77baae7ba8cfde

    • Size

      815KB

    • MD5

      de918532911821bda5aab1717774daa1

    • SHA1

      1332afd8ff680f5297fc3981f1c65d605979dcb0

    • SHA256

      cf30bb977a3397d79ac55f800b760dd02020fdbcd35835a5ba77baae7ba8cfde

    • SHA512

      5c995f46184668ca7515a69a07212095bcdd88f44f94c22743966498b3bed4487648bcdae0d7d259edf55823a962e0977f027da3340a1aff710c0872e9f49e9e

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks