00b3d2418be2096b065c190a7f1ca3001176693a52f79153a8a2d42369dffebe | Triage

Sharing

General

Target

00b3d2418be2096b065c190a7f1ca3001176693a52f79153a8a2d42369dffebe
Size

327KB
Sample

220524-pxx27aagc8
MD5

06a103d618a6f462e83542c0485e4891
SHA1

87d8f56d5b1c15713ad386e27491b5d36314f40f
SHA256

00b3d2418be2096b065c190a7f1ca3001176693a52f79153a8a2d42369dffebe
SHA512

769d30464dfdb92c812fcade061d3a9b01d6b24c3d5de0265687043da2fc130c8bed2c72bc8d4a1482b35545b937f48b9b9c7fdfda0292a04eecaec6973a342d

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  00b3d2418be2096b065c190a7f1ca3001176693a52f79153a8a2d42369dffebe
- Size
  
  327KB
- MD5
  
  06a103d618a6f462e83542c0485e4891
- SHA1
  
  87d8f56d5b1c15713ad386e27491b5d36314f40f
- SHA256
  
  00b3d2418be2096b065c190a7f1ca3001176693a52f79153a8a2d42369dffebe
- SHA512
  
  769d30464dfdb92c812fcade061d3a9b01d6b24c3d5de0265687043da2fc130c8bed2c72bc8d4a1482b35545b937f48b9b9c7fdfda0292a04eecaec6973a342d
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence