00d0ed5b244469a243b8ad955482a143772a40e20e7d54a4fa0207fff25931f2 | Triage

Sharing

General

Target

00d0ed5b244469a243b8ad955482a143772a40e20e7d54a4fa0207fff25931f2
Size

205KB
Sample

220524-n6sndshdf3
MD5

cf209572e90ea338a04f9681a098e8cc
SHA1

8b8178b59481064d9321bcbc9dab70e666c9f471
SHA256

00d0ed5b244469a243b8ad955482a143772a40e20e7d54a4fa0207fff25931f2
SHA512

660b4056c87cd2e711fb99dc1ea356b7d3968ce57e0c10f6f31db1f025a114c540e7115d293ff6db98a03af668cc4e093fe4b80bb0761e8d6f723f4b47855318

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  00d0ed5b244469a243b8ad955482a143772a40e20e7d54a4fa0207fff25931f2
- Size
  
  205KB
- MD5
  
  cf209572e90ea338a04f9681a098e8cc
- SHA1
  
  8b8178b59481064d9321bcbc9dab70e666c9f471
- SHA256
  
  00d0ed5b244469a243b8ad955482a143772a40e20e7d54a4fa0207fff25931f2
- SHA512
  
  660b4056c87cd2e711fb99dc1ea356b7d3968ce57e0c10f6f31db1f025a114c540e7115d293ff6db98a03af668cc4e093fe4b80bb0761e8d6f723f4b47855318
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence