Overview

overview

6

Static

static

62eff1db0d...99.exe

windows7-x64

6

62eff1db0d...99.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    62eff1db0dd2e80d657686ea39588c9adcd47931806729572789b5d6eef98399

  • Size

    149KB

  • Sample

    221003-bkat8sabe2

  • MD5

    66e85134f69d400a4bbb6aca54c19b40

  • SHA1

    fc7ba96843be006d90e90bba0768df264548b530

  • SHA256

    62eff1db0dd2e80d657686ea39588c9adcd47931806729572789b5d6eef98399

  • SHA512

    11412a00659109da2a7389f821684b2949e6a13d65c2e6f8e20341fc1ebb64ae281a5526d2876fcc3c6dd2d663a4e3b0faccf67a55fdf84f004dca643a2944ab

  • SSDEEP

    3072:ZUHuEWwuO7rpki8/lBF50uGTHgb4HVheWo9iZWkd1NIVo:ZUHuNbOpnC/F50uGVzeWo0ZWkLN0o

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      62eff1db0dd2e80d657686ea39588c9adcd47931806729572789b5d6eef98399

    • Size

      149KB

    • MD5

      66e85134f69d400a4bbb6aca54c19b40

    • SHA1

      fc7ba96843be006d90e90bba0768df264548b530

    • SHA256

      62eff1db0dd2e80d657686ea39588c9adcd47931806729572789b5d6eef98399

    • SHA512

      11412a00659109da2a7389f821684b2949e6a13d65c2e6f8e20341fc1ebb64ae281a5526d2876fcc3c6dd2d663a4e3b0faccf67a55fdf84f004dca643a2944ab

    • SSDEEP

      3072:ZUHuEWwuO7rpki8/lBF50uGTHgb4HVheWo9iZWkd1NIVo:ZUHuNbOpnC/F50uGVzeWo0ZWkLN0o

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks