f73882be9f2c415bba53237931ecb4041683acfcfa96ad9a27e7ab662684b180 | Triage

Sharing

General

Target

f73882be9f2c415bba53237931ecb4041683acfcfa96ad9a27e7ab662684b180
Size

469KB
Sample

221003-cnp9rsddhk
MD5

367e055710aafdb153b0487b26fb0ef0
SHA1

c4ef0c0c9bf647893bf24d4ebcc0ce778e0afc94
SHA256

f73882be9f2c415bba53237931ecb4041683acfcfa96ad9a27e7ab662684b180
SHA512

2a7bce666dac94b7f8f0590870ad1fe952a0e71078fd6de4517fb17af991016a318cf3a00b8209676bdcbfc23af0c9c32c031358fde2ac1beafbe315d4776f8b
SSDEEP

12288:95k+q39RdHC+b/X3jAg82O9J9TxbWCFeMeYwqFI7W:9CltDHPj7c7NbWrMeYwqcW

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  f73882be9f2c415bba53237931ecb4041683acfcfa96ad9a27e7ab662684b180
- Size
  
  469KB
- MD5
  
  367e055710aafdb153b0487b26fb0ef0
- SHA1
  
  c4ef0c0c9bf647893bf24d4ebcc0ce778e0afc94
- SHA256
  
  f73882be9f2c415bba53237931ecb4041683acfcfa96ad9a27e7ab662684b180
- SHA512
  
  2a7bce666dac94b7f8f0590870ad1fe952a0e71078fd6de4517fb17af991016a318cf3a00b8209676bdcbfc23af0c9c32c031358fde2ac1beafbe315d4776f8b
- SSDEEP
  
  12288:95k+q39RdHC+b/X3jAg82O9J9TxbWCFeMeYwqFI7W:9CltDHPj7c7NbWrMeYwqcW
Score

8^/10

bootkit persistence
- Executes dropped EXE
- Deletes itself
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2