Overview

overview

7

Static

static

1

278dfb3ceb...a4.exe

windows7_x64

7

278dfb3ceb...a4.exe

windows10-2004_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    278dfb3ceb921cb6d3c902e1a1837b5879bfa48c7d86a321dca5e4ea3543eca4

  • Size

    9.2MB

  • Sample

    220524-rdh52adgb3

  • MD5

    e4c544bff919b75bb7ca83f84bcfc5a0

  • SHA1

    17a11571e67cf71e8ce0f9b05fda956a663c1f7d

  • SHA256

    278dfb3ceb921cb6d3c902e1a1837b5879bfa48c7d86a321dca5e4ea3543eca4

  • SHA512

    91c6f068db62de70ac88ecc669ecef8fb0380f306b8118e2d4d021e5e1cfc32444f294c3cf8a674fcabf6fe78392671281215985238ba32422f33dda201e6598

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      278dfb3ceb921cb6d3c902e1a1837b5879bfa48c7d86a321dca5e4ea3543eca4

    • Size

      9.2MB

    • MD5

      e4c544bff919b75bb7ca83f84bcfc5a0

    • SHA1

      17a11571e67cf71e8ce0f9b05fda956a663c1f7d

    • SHA256

      278dfb3ceb921cb6d3c902e1a1837b5879bfa48c7d86a321dca5e4ea3543eca4

    • SHA512

      91c6f068db62de70ac88ecc669ecef8fb0380f306b8118e2d4d021e5e1cfc32444f294c3cf8a674fcabf6fe78392671281215985238ba32422f33dda201e6598

    Score
    7/10
    bootkitpersistence

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks