7130d8cf5a0c0d2fdaf1283c3b94e9d018198f782788984c47748361914c9881 | Triage

Sharing

General

Target

7130d8cf5a0c0d2fdaf1283c3b94e9d018198f782788984c47748361914c9881
Size

239KB
Sample

221002-ghhpyscbal
MD5

67ec3f7d78c107a521399e33ffb99240
SHA1

e1a6c106dcf20d7d7f68eb1d7a19bcd7c41c236f
SHA256

7130d8cf5a0c0d2fdaf1283c3b94e9d018198f782788984c47748361914c9881
SHA512

52d1b12eb1584463098ae4ae0a1d837c11efc870271c8a5e06571513df56643afb2ab3cda5d199bdfe5aaade987c8e5a7bb17af4341f305b5b5c85be3993e843
SSDEEP

6144:rGiJO9Q8sR19iNKdUEsgiGs91vc1z/YN20rg5:1D8sR1DdUpgiN1k1zSe

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  7130d8cf5a0c0d2fdaf1283c3b94e9d018198f782788984c47748361914c9881
- Size
  
  239KB
- MD5
  
  67ec3f7d78c107a521399e33ffb99240
- SHA1
  
  e1a6c106dcf20d7d7f68eb1d7a19bcd7c41c236f
- SHA256
  
  7130d8cf5a0c0d2fdaf1283c3b94e9d018198f782788984c47748361914c9881
- SHA512
  
  52d1b12eb1584463098ae4ae0a1d837c11efc870271c8a5e06571513df56643afb2ab3cda5d199bdfe5aaade987c8e5a7bb17af4341f305b5b5c85be3993e843
- SSDEEP
  
  6144:rGiJO9Q8sR19iNKdUEsgiGs91vc1z/YN20rg5:1D8sR1DdUpgiN1k1zSe
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence