Overview

overview

6

Static

static

460f857030...40.exe

windows7-x64

6

460f857030...40.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    460f857030ceeca3a2ea9a3f5879bf3b448f7ee8739e7d7d7a5be0caf85d0a40

  • Size

    853KB

  • Sample

    221003-ee8e4aehg2

  • MD5

    4c6230d996115ce60298afb6c9a38a20

  • SHA1

    73b5c931a1746bea7b9c0f045bf1f811adfc80cb

  • SHA256

    460f857030ceeca3a2ea9a3f5879bf3b448f7ee8739e7d7d7a5be0caf85d0a40

  • SHA512

    06b392938f973f575f037947786ca6d174817af009b6e29de3043a3454e0ff9637123414314420a31e977c0597bd08b44c70fa0b4be25b4ad34a73198c4e7be5

  • SSDEEP

    24576:j2P4UvpgPssXwRs2ylpz09zxIDB+yVE7Bit4KCe6:1LssXwRsZVCBieKCe6

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      460f857030ceeca3a2ea9a3f5879bf3b448f7ee8739e7d7d7a5be0caf85d0a40

    • Size

      853KB

    • MD5

      4c6230d996115ce60298afb6c9a38a20

    • SHA1

      73b5c931a1746bea7b9c0f045bf1f811adfc80cb

    • SHA256

      460f857030ceeca3a2ea9a3f5879bf3b448f7ee8739e7d7d7a5be0caf85d0a40

    • SHA512

      06b392938f973f575f037947786ca6d174817af009b6e29de3043a3454e0ff9637123414314420a31e977c0597bd08b44c70fa0b4be25b4ad34a73198c4e7be5

    • SSDEEP

      24576:j2P4UvpgPssXwRs2ylpz09zxIDB+yVE7Bit4KCe6:1LssXwRsZVCBieKCe6

    Score
    6/10
    bootkitpersistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks