Overview

overview

6

Static

static

fb76f31be5...ad.exe

windows7-x64

6

fb76f31be5...ad.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb76f31be56f469a03c2c109a985d4dfc4e1e0e9be2e0b77858650e4fc9101ad

  • Size

    244KB

  • Sample

    221002-nv2f6afadj

  • MD5

    6bba9be9f9e5dae39a2e24b3c262e9a1

  • SHA1

    d9a202584ddc3a805ef8c326c36fc29eff2c78e1

  • SHA256

    fb76f31be56f469a03c2c109a985d4dfc4e1e0e9be2e0b77858650e4fc9101ad

  • SHA512

    0c2d1801ff2c103ea88bae803329a330cde5f99862d176f132bb48feb9e1c4b4ff050740e282ac45269ba3f0e729e2f725800ed64f33e1922fbee6d2076bbacd

  • SSDEEP

    6144:hHfolR5MHwC+H1lySquMborPtCLoD4TyQOI5JgpcvqNplc5LU5qaU9:hwj5MHwCO7yfosT0Iw5p+LU5qt9

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      fb76f31be56f469a03c2c109a985d4dfc4e1e0e9be2e0b77858650e4fc9101ad

    • Size

      244KB

    • MD5

      6bba9be9f9e5dae39a2e24b3c262e9a1

    • SHA1

      d9a202584ddc3a805ef8c326c36fc29eff2c78e1

    • SHA256

      fb76f31be56f469a03c2c109a985d4dfc4e1e0e9be2e0b77858650e4fc9101ad

    • SHA512

      0c2d1801ff2c103ea88bae803329a330cde5f99862d176f132bb48feb9e1c4b4ff050740e282ac45269ba3f0e729e2f725800ed64f33e1922fbee6d2076bbacd

    • SSDEEP

      6144:hHfolR5MHwC+H1lySquMborPtCLoD4TyQOI5JgpcvqNplc5LU5qaU9:hwj5MHwCO7yfosT0Iw5p+LU5qt9

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks