Overview

overview

8

Static

static

e57ba0108d...56.exe

windows7_x64

8

e57ba0108d...56.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e57ba0108d9e9b8e4150510ebd230a823ec97f6e74f3e7119986f0568d17be56

  • Size

    956KB

  • Sample

    220524-cvp8cacch8

  • MD5

    1ad3bda75471f72e3014090c62c7db23

  • SHA1

    0bf7bfb0d132c77bdc2f0f32dfa85658070cc398

  • SHA256

    e57ba0108d9e9b8e4150510ebd230a823ec97f6e74f3e7119986f0568d17be56

  • SHA512

    1807989120e210c27c32e748393b84cb6383fb0145eb5911c7b0f0fc79e19dc196742cd8e56260c4b47ab24e892e8bea85154e7e99d2033273cc6c91e040cc4d

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      e57ba0108d9e9b8e4150510ebd230a823ec97f6e74f3e7119986f0568d17be56

    • Size

      956KB

    • MD5

      1ad3bda75471f72e3014090c62c7db23

    • SHA1

      0bf7bfb0d132c77bdc2f0f32dfa85658070cc398

    • SHA256

      e57ba0108d9e9b8e4150510ebd230a823ec97f6e74f3e7119986f0568d17be56

    • SHA512

      1807989120e210c27c32e748393b84cb6383fb0145eb5911c7b0f0fc79e19dc196742cd8e56260c4b47ab24e892e8bea85154e7e99d2033273cc6c91e040cc4d

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks