Overview

overview

6

Static

static

efdf07c426...7a.exe

windows7-x64

6

efdf07c426...7a.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    efdf07c4265636dedb1dcd5a5ea5d428ed74dae7effa7f3f8f59080db370017a

  • Size

    329KB

  • Sample

    221003-h5kcqseeap

  • MD5

    514bb9de0045a7f69685e21f84ad66b0

  • SHA1

    0844c6343443471a87cdee564efcd2d92760fbae

  • SHA256

    efdf07c4265636dedb1dcd5a5ea5d428ed74dae7effa7f3f8f59080db370017a

  • SHA512

    9cb59e8946c19ff51b94a088b075dacb169ce80fdf08146c53fe45718637b6a37cf68425ca46c9c71b84a6b50670f77275c94bd3c7b0b37b6f40f9bf3807ed46

  • SSDEEP

    6144:P3l11111111111111111111111111111111111111111111111n111SfjgzEZXZZ:P111111111111111111111111111111U

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      efdf07c4265636dedb1dcd5a5ea5d428ed74dae7effa7f3f8f59080db370017a

    • Size

      329KB

    • MD5

      514bb9de0045a7f69685e21f84ad66b0

    • SHA1

      0844c6343443471a87cdee564efcd2d92760fbae

    • SHA256

      efdf07c4265636dedb1dcd5a5ea5d428ed74dae7effa7f3f8f59080db370017a

    • SHA512

      9cb59e8946c19ff51b94a088b075dacb169ce80fdf08146c53fe45718637b6a37cf68425ca46c9c71b84a6b50670f77275c94bd3c7b0b37b6f40f9bf3807ed46

    • SSDEEP

      6144:P3l11111111111111111111111111111111111111111111111n111SfjgzEZXZZ:P111111111111111111111111111111U

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks