Overview

overview

3

Static

static

BOOTVID.dll

windows7-x64

1

BOOTVID.dll

windows10-2004-x64

3

BootMenuUX.dll

windows7-x64

1

BootMenuUX.dll

windows10-2004-x64

3

BootRec.exe

windows7-x64

BootRec.exe

windows10-2004-x64

1

BroadcastE...ge.exe

windows7-x64

1

BroadcastE...ge.exe

windows10-2004-x64

1

BrokerLib.dll

windows7-x64

1

BrokerLib.dll

windows10-2004-x64

1

bootsect.exe

windows7-x64

1

bootsect.exe

windows10-2004-x64

1

bootstr.dll

windows7-x64

1

bootstr.dll

windows10-2004-x64

1

bootux.dll

windows7-x64

1

bootux.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6234605a0e9485d29bb021a895749d6a94cc433dafd9cb2e6021a142aa18d191

  • Size

    736KB

  • Sample

    220914-kzg2jahgb2

  • MD5

    f1f9292d69aa6b08808b9ef1258ff5fe

  • SHA1

    27f8deb6a961132348438b1d8795f04a0422d76d

  • SHA256

    6234605a0e9485d29bb021a895749d6a94cc433dafd9cb2e6021a142aa18d191

  • SHA512

    42d339529b02f0112cfb750f99a9c7cf8052f6d4e02ea2b1cd472b632f69c1890d8fe0207a9762a6345952cf654c171dbf2a80ffa80e4701a9223a69dd059627

  • SSDEEP

    12288:Un9J9cHxgh/A73kiAVenIZCEOWjowFsOIpXHvx4GOYWQOA5rucGhWQVfI0aviT+b:e+ShU8InxEOsi1pX5BT5CcwVA04+aN46

Score
3/10

Malware Config

Targets

    • Target

      BOOTVID.DLL

    • Size

      25KB

    • MD5

      05c4143ea8151689f258627525bfc776

    • SHA1

      f2dc8402e6fd90b5b6a2599a665536db754c95c7

    • SHA256

      4fc49e2fc7473d09b1af2d9ef4215c13785e1ff8d1ad939baa3e7f1f0e59a388

    • SHA512

      554cf010cb3b66d91b74725ff7b855de459415835fd1fe84fdb7c835d12c09e3e9415727e6335df01c6115adb7714dabf1850544f462f92623cc3a9d90bcda64

    • SSDEEP

      384:bn9XbbhfnmLe0FoDK70CRyXS6LZWjvUW8mXjDBRJ34wll2Hp:j9X3VmLboDK7sXbWLXj1Po0w

    Score
    3/10
    behavioral1behavioral2

    • Target

      BootMenuUX.dll

    • Size

      642KB

    • MD5

      5a17e270fe9efcb431067767317a3e47

    • SHA1

      de90385622d4bd2da42c4e938466c733509e59e5

    • SHA256

      09430f6fff7649063f14f32de7af0fe9167c974f6f5e2864ab2b8417e5d1691b

    • SHA512

      20daa2a7841e1f35617e360f7c8826c2608d993eb1d9783827ebfdec09862738ac047bfe4475150fd95d5ef60cbf63984c07248ad9b0a6e2c380da83ac217dfa

    • SSDEEP

      12288:Ksa82mtMU4V2ru53J/emTJ6KXTJM6g6iWbNOUzEj0DkZsXeDSHx0:/J2myU4ku5Z/pWuPNOUzE4OlDm

    Score
    3/10
    behavioral3behavioral4

    • Target

      BootRec.exe

    • Size

      349KB

    • MD5

      3d5b3e84243472bcdafdcb2f902c41da

    • SHA1

      9c0c415fab9460a83c897693335932b1f0619b3a

    • SHA256

      ac831290f920a03188489e6b94913baba8ad92a063fe402f023bd3b144fa3790

    • SHA512

      cc46b621918b034e9af4d4445eaebf24c997e808172d917d143ed90e301f72cd3e56e1fa1713e1eee31e1889fc71a81cdf715febc8e437cf351d140359347090

    • SSDEEP

      6144:CEtNmwT5KHaN7oUu8V5Oj0ID4OhxVwyUoMrcemxIe5xkMo5DPWkd:Ld5KHM7oUu8VUnVtJMrcemt5YPH

    Score
    1/10
    behavioral5behavioral6

    • Target

      BroadcastEnvChange.exe

    • Size

      58KB

    • MD5

      8a310b5139a18476f4d49bd31b0f6c58

    • SHA1

      243350848c54503cec1ee3c6f6ecfc9a1196070a

    • SHA256

      148205b5b6c3e8fce36793153b894424ada91b351a42a9314004ab5f3f2e8ad1

    • SHA512

      23232890d1cca7559abfcb53611d99577fb4a05fd54330a6916b6e3fe3a0fb28ee578e168b0034600def3fe25320396339b641101fff26c90438c680d7f9fc00

    • SSDEEP

      768:uoauGrCSn5U7gd5fEqTIYv4gKNwFPoES9NE6jiND8+v:RVanZEqTIm4gKN2PoES9NTGx

    Score
    1/10
    behavioral7behavioral8

    • Target

      BrokerLib.dll

    • Size

      239KB

    • MD5

      45c13611ebc323820e44e7b03da14add

    • SHA1

      6bd02f44738719278fbc62422518fd260788d316

    • SHA256

      e08b31e81d7b8590cabf84015d52ee641a3fe8791eaac238377965bd9c4a8524

    • SHA512

      83b330803ff91e0ba1a72dba8b195e4fd2a435b9c9f5ea62f29328595a7b0fcf0c700a0e9270204cf046b53549a9f0600b8638c3dbd8143a26963f0033c46e89

    • SSDEEP

      3072:pnliuZ2ozeum3yO07Tt/vHtj5agLxZqNKnqDpL75hY9/Mc9EK4mrFyPoOYxAz6XT:9UuZ2oaBqt5aYDqug75hAHH+z6X

    Score
    1/10
    behavioral9behavioral10

    • Target

      bootsect.exe

    • Size

      105KB

    • MD5

      de2ed40e84629ed5d61bdda56ae7b395

    • SHA1

      e7d1cbec1867df9507a5d2d9afc7766d73fae267

    • SHA256

      1b81d1cd1b8a5200cc656f59f98a6062daa6d678aac6dcbbf48787cbc1d5ceb8

    • SHA512

      d664d6e67c4a14a249c1d074257e0486f69fb952e567173277e2cfc325c6b91684e957ec24e7541440da1725f4947ccd85cee7addf94a48740dbbcb58bd3e8bb

    • SSDEEP

      1536:HclzrI46R7g7nM2sEXCHuYHwgpx5H7Dd3JIpP:HYI1R8I2sEN+XpfHX5u

    Score
    1/10
    behavioral11behavioral12

    • Target

      bootstr.dll

    • Size

      3KB

    • MD5

      5cf2089d0313c34ad0dea0cdbe5e9812

    • SHA1

      aee4bdd74baa1325cc924125571ebe4a3ba9fffa

    • SHA256

      65c56bba847746d2e8e6253afc38a446e6ab065f98ec00fa8499d6d70e7b6242

    • SHA512

      080ffa242d89b9a73362dc911b9f8d2939766ce63414bda0ed68bcbe0a149f8d92e1a056ae736f03ed627400984f568a6bc53972c405bea931bbe4c388135d32

    Score
    1/10
    behavioral13behavioral14

    • Target

      bootux.dll

    • Size

      3.8MB

    • MD5

      17173aa0b01a83e90baaaf747aa3547e

    • SHA1

      a7d80f21a89d4f7547a40de44455bc15a73fde7f

    • SHA256

      7f03d100daedc91cd9fee2a91dd6dc9d67142e9dc0e7aedb479cf320b827d1e6

    • SHA512

      6d77a9327320b68923ec3b7ab9c0db18ce63865df486ea4d4ea63034b318ad6074369ff7c446738f3d61c9e6460e57006359f3d3a74ef611888379093c6e53e4

    • SSDEEP

      6144:V+xTJJVyqgBJoyTZNAiLeWoa4xkBqjseh65Ym8WAk14:sNJJYqgBJoyTTAYgOqHh65YmzK

    Score
    3/10
    behavioral15behavioral16

MITRE ATT&CK Matrix

Tasks