15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc | Triage

Submit
Reports

Overview

overview

8

Static

static

8

15c70b04d6...cc.exe

windows7-x64

8

15c70b04d6...cc.exe

windows10-2004-x64

8

Sharing

General

Target

15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc
Size

43KB
Sample

221020-fp1cxafah6
MD5

81935c148dd22cdc3c4a43b07dd1f630
SHA1

794e7127574d9f4fa8d2743af9cf39d6dadcbffa
SHA256

15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc
SHA512

3942363bfc6df04edc88bd899e9d1eeb243b16415c6c0aa4f9f0f633bb49e81c435f7a53097eb56a418f9e3fad00acdf13e10b25ec4c23d998ad29a95cc1cdcc
SSDEEP

768:xprJMnye6TIYCm/YVB+PtYUU4V9pTJaPF076Gc3dxFWuIdXmXHm:DrJMye6LCTB+PtYUU4VPP7ktrKXmXHm

Score

8^/10

bootkit persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc.exe

Resource

win7-20220901-en

bootkit persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc.exe

Resource

win10v2004-20220901-en

bootkit persistence upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc
- Size
  
  43KB
- MD5
  
  81935c148dd22cdc3c4a43b07dd1f630
- SHA1
  
  794e7127574d9f4fa8d2743af9cf39d6dadcbffa
- SHA256
  
  15c70b04d686fdaf34d2f2df5ac76986df288bf505dd8f413484cbd8699acacc
- SHA512
  
  3942363bfc6df04edc88bd899e9d1eeb243b16415c6c0aa4f9f0f633bb49e81c435f7a53097eb56a418f9e3fad00acdf13e10b25ec4c23d998ad29a95cc1cdcc
- SSDEEP
  
  768:xprJMnye6TIYCm/YVB+PtYUU4V9pTJaPF076Gc3dxFWuIdXmXHm:DrJMye6LCTB+PtYUU4VPP7ktrKXmXHm
Score

8^/10

bootkit persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistenceupx

behavioral2

bootkitpersistenceupx

© 2018-2025

Terms | Privacy