31e1f720cd49a019e77ab963ecd9d45ce8319aa6a27f0bf4f1956128c7e2bb2b | Triage

Sharing

General

Target

31e1f720cd49a019e77ab963ecd9d45ce8319aa6a27f0bf4f1956128c7e2bb2b
Size

88KB
Sample

221003-capq3sbcb8
MD5

098aa542acf1217d81b932416e11f1e0
SHA1

c966afa2cf87bf1aa98a073b80ac4b9768ac74ff
SHA256

31e1f720cd49a019e77ab963ecd9d45ce8319aa6a27f0bf4f1956128c7e2bb2b
SHA512

8ec69521df615f2411662bbb967d1876d10dfdb4d2b2ee79e6cad2ad90414d94ab85ec6229e7d17f53306e4bb18bfff82ec26da1592a04f95f47669b0c86fb42
SSDEEP

1536:qYTmwVUsW7dtJMHy0DxmJ9BGXpMMKvTd+x9yNvM4nvDzZJo3lA7eFuY3M:tS17XJiDxmJ9BYMMKvTd4EjnvZJo3KgM

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  31e1f720cd49a019e77ab963ecd9d45ce8319aa6a27f0bf4f1956128c7e2bb2b
- Size
  
  88KB
- MD5
  
  098aa542acf1217d81b932416e11f1e0
- SHA1
  
  c966afa2cf87bf1aa98a073b80ac4b9768ac74ff
- SHA256
  
  31e1f720cd49a019e77ab963ecd9d45ce8319aa6a27f0bf4f1956128c7e2bb2b
- SHA512
  
  8ec69521df615f2411662bbb967d1876d10dfdb4d2b2ee79e6cad2ad90414d94ab85ec6229e7d17f53306e4bb18bfff82ec26da1592a04f95f47669b0c86fb42
- SSDEEP
  
  1536:qYTmwVUsW7dtJMHy0DxmJ9BGXpMMKvTd+x9yNvM4nvDzZJo3lA7eFuY3M:tS17XJiDxmJ9BYMMKvTd4EjnvZJo3KgM
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence