6d78eb53955c659c80d941b2872bc8bbecf6083716fafbbafe8886957505cfb5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ASITC-WS0650_2022-10-12_09_59_52.zip
Size

707KB
Sample

221012-qzbgmsdggq
MD5

e24c75fe38ff96d1064c6cf43d2ce677
SHA1

b2c0b5ca17e333c2b3faed63fc84b871c1bda87e
SHA256

6d78eb53955c659c80d941b2872bc8bbecf6083716fafbbafe8886957505cfb5
SHA512

41837c9c94507873a9b4d6104e38cc8def7325f01104eb5a5e3473f35844aa609681738fad7ca8bbbe7b2fe92b755d19b1a03dfe292e12a2b7b25a2ac39fe36d
SSDEEP

12288:r07dpwpjm2w4UwTuOdFCPEdbx1bACsRR8rspHrDkm6P+pwGAh/KX0HOmD7DFhxPr:47ajHw4UwaOdFWE57sRa2cm6P7ikPvDd

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  Device/HarddiskVolume3/$Recycle.Bin/S-1-5-21-665418748-2217626600-2402536667-5146/$R93IZXS.exe
- Size
  
  2.0MB
- MD5
  
  aa7a119466b86a2ecef4fbd15051bef5
- SHA1
  
  d0a0ada62472a500e1797fb19155d94135c3a7bf
- SHA256
  
  9d315e5d653999a3eb62c97608afbf551b8842dc92094ef29f3f70f7f5162881
- SHA512
  
  83e72938969170dcc15cd000b1f5fa199e41b21743ca8e5eab5f0b6de56ad402d19068a93dda9527eafec3e84a71b4b211a4b7704daac63fda659d7ccb33c868
- SSDEEP
  
  24576:uWFS0v7UvNTdPF7I9yGCK7P+0eYTmz6vMldEC3FCRcAsjeKu/b+qhFS3ssRPXPXa:uWFS0DiBpEyfYsdlz3F3s2/XG1
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence