6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

6b0fc1e2e2...b5.exe

windows7-x64

8

6b0fc1e2e2...b5.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5
Size

112KB
Sample

221030-f2ypvadfh3
MD5

92c030513aa62b2885915c7a03378160
SHA1

babc94e5ba0a8b8f4e82a7059d6865cc56c4af18
SHA256

6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5
SHA512

8a1088de008329da8ad8790ac42f394e26edd872319c9fb91deb476f72f4f49695842c52267da0336b6c04118a64433c83f91bab6f301821bffe45d5245ebdd8
SSDEEP

1536:5D7Fuc0TZ08z3jeeXNXS3zRgyaiQPEigSsnHSFfb0IL4+mLTtyX2XO:1g1Nfz3jeedmzf5igSsnHAIO25yG+

Score

8^/10

bootkit persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5.exe

Resource

win7-20220812-en

bootkit persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5.exe

Resource

win10v2004-20220901-en

bootkit persistence upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5
- Size
  
  112KB
- MD5
  
  92c030513aa62b2885915c7a03378160
- SHA1
  
  babc94e5ba0a8b8f4e82a7059d6865cc56c4af18
- SHA256
  
  6b0fc1e2e210d927c368480e343b46863ea8289ff7bb9e566e64ae1dbf4d91b5
- SHA512
  
  8a1088de008329da8ad8790ac42f394e26edd872319c9fb91deb476f72f4f49695842c52267da0336b6c04118a64433c83f91bab6f301821bffe45d5245ebdd8
- SSDEEP
  
  1536:5D7Fuc0TZ08z3jeeXNXS3zRgyaiQPEigSsnHSFfb0IL4+mLTtyX2XO:1g1Nfz3jeedmzf5igSsnHAIO25yG+
Score

8^/10

bootkit persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistenceupx

behavioral2

bootkitpersistenceupx

© 2018-2025

Terms | Privacy