bbf5700aac154ebdcf10d5216a8d306bebde1d84579a62603a6fb526f108fe64 | Triage

Sharing

General

Target

bbf5700aac154ebdcf10d5216a8d306bebde1d84579a62603a6fb526f108fe64
Size

727KB
Sample

221020-j3tn3achcq
MD5

75a2b5a3189fe25452dd5aa23a6cee00
SHA1

44ed03dee530d3f61a71e78e8b7641c7f2cdb64e
SHA256

bbf5700aac154ebdcf10d5216a8d306bebde1d84579a62603a6fb526f108fe64
SHA512

4ba89fd771df0554846b7602e54099ca37ece2eb4d3fcc355ac6da76a35c6e0d970c8ff6986a93443d498cea15a6183a85af4b66e9342b41c0c96917065150ec
SSDEEP

12288:rwECaUglPnFsk7P0UahDyDT1+BRXjIjppgryXAGo1i:rwEC70qkgUahDuwR2ApU

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  bbf5700aac154ebdcf10d5216a8d306bebde1d84579a62603a6fb526f108fe64
- Size
  
  727KB
- MD5
  
  75a2b5a3189fe25452dd5aa23a6cee00
- SHA1
  
  44ed03dee530d3f61a71e78e8b7641c7f2cdb64e
- SHA256
  
  bbf5700aac154ebdcf10d5216a8d306bebde1d84579a62603a6fb526f108fe64
- SHA512
  
  4ba89fd771df0554846b7602e54099ca37ece2eb4d3fcc355ac6da76a35c6e0d970c8ff6986a93443d498cea15a6183a85af4b66e9342b41c0c96917065150ec
- SSDEEP
  
  12288:rwECaUglPnFsk7P0UahDyDT1+BRXjIjppgryXAGo1i:rwEC70qkgUahDuwR2ApU
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence