General

  • Target

    334c5d6e15b3b7b14621225eb02f3414f957f50c8c1d57aa3e360a82633eb726

  • Size

    409KB

  • Sample

    221003-btlcbscafn

  • MD5

    6e497e5f7c157ecbe53cb35a53b23e34

  • SHA1

    0ff64d6e9270ac70aad762d61622f68e9f93d90b

  • SHA256

    334c5d6e15b3b7b14621225eb02f3414f957f50c8c1d57aa3e360a82633eb726

  • SHA512

    838bdc41b59dab57a5936ca098fb75177af32035f20d585e6612804fdcbcd3f5293879b967b9f13711bb05a1c1513c727cbece72190e2cc5321c2af5720a8574

  • SSDEEP

    12288:mIITk/YQ8Z84uvs61YgCTzUJjNW1K3DnsDTQtZ:HIc4ErJCTgZW4DsDT+Z

Malware Config

Targets

    • Target

      334c5d6e15b3b7b14621225eb02f3414f957f50c8c1d57aa3e360a82633eb726

    • Size

      409KB

    • MD5

      6e497e5f7c157ecbe53cb35a53b23e34

    • SHA1

      0ff64d6e9270ac70aad762d61622f68e9f93d90b

    • SHA256

      334c5d6e15b3b7b14621225eb02f3414f957f50c8c1d57aa3e360a82633eb726

    • SHA512

      838bdc41b59dab57a5936ca098fb75177af32035f20d585e6612804fdcbcd3f5293879b967b9f13711bb05a1c1513c727cbece72190e2cc5321c2af5720a8574

    • SSDEEP

      12288:mIITk/YQ8Z84uvs61YgCTzUJjNW1K3DnsDTQtZ:HIc4ErJCTgZW4DsDT+Z

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Bootkit

1
T1067

Tasks