edc192d7f9863167968350c73b78bdf1eb2ebced2d5a77230121c6e1d99b1955 | Triage

Sharing

General

Target

edc192d7f9863167968350c73b78bdf1eb2ebced2d5a77230121c6e1d99b1955
Size

1.7MB
Sample

221017-wt84lscgfk
MD5

116845a0bc1d542a6f69c75f015241c8
SHA1

848c4432871c19aaa4f02fde0f38b79b04f64da2
SHA256

edc192d7f9863167968350c73b78bdf1eb2ebced2d5a77230121c6e1d99b1955
SHA512

0c19baf380e2ce45df3d3b80c6509e23db7987949b60ec1900dc6e6b99ee936936fdc63864e52921bd2305d3e3b844cf0c3c7c2dae2287ce804f42e47921cd9d
SSDEEP

49152:35rk8qq0lcyVlgoRdLbD5Zs9RulvabBsZVbYRKw:3aqroRdLxlibBsZ2RT

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  edc192d7f9863167968350c73b78bdf1eb2ebced2d5a77230121c6e1d99b1955
- Size
  
  1.7MB
- MD5
  
  116845a0bc1d542a6f69c75f015241c8
- SHA1
  
  848c4432871c19aaa4f02fde0f38b79b04f64da2
- SHA256
  
  edc192d7f9863167968350c73b78bdf1eb2ebced2d5a77230121c6e1d99b1955
- SHA512
  
  0c19baf380e2ce45df3d3b80c6509e23db7987949b60ec1900dc6e6b99ee936936fdc63864e52921bd2305d3e3b844cf0c3c7c2dae2287ce804f42e47921cd9d
- SSDEEP
  
  49152:35rk8qq0lcyVlgoRdLbD5Zs9RulvabBsZVbYRKw:3aqroRdLxlibBsZ2RT
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2