669f184820626fbf34c048c287e64777d491dfb77c0928810dc8b77a7fe79222 | Triage

Sharing

General

Target

669f184820626fbf34c048c287e64777d491dfb77c0928810dc8b77a7fe79222
Size

5.7MB
Sample

221105-ssvytaafdp
MD5

b4e81111384a84c6058b78731a499c20
SHA1

6d1c6b43f1875934131a04858f6186786e7b09a5
SHA256

669f184820626fbf34c048c287e64777d491dfb77c0928810dc8b77a7fe79222
SHA512

deaf0d3923e32b18cfad1ba0bc91e08023359c59c37a6d4ae8168613069d1729e7c31c2cbb0dc96914f994c553dc2ffe8ba5a4d8ea55034fd872cc3b53cb104a
SSDEEP

98304:1tbG7pEfNMhG4D+IvOjO5wDE3b6JK7PJoAMPW/TA3cldT04S6WBPbX:uFEfmhB+8OSOkoKgQ7SfVbX

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  669f184820626fbf34c048c287e64777d491dfb77c0928810dc8b77a7fe79222
- Size
  
  5.7MB
- MD5
  
  b4e81111384a84c6058b78731a499c20
- SHA1
  
  6d1c6b43f1875934131a04858f6186786e7b09a5
- SHA256
  
  669f184820626fbf34c048c287e64777d491dfb77c0928810dc8b77a7fe79222
- SHA512
  
  deaf0d3923e32b18cfad1ba0bc91e08023359c59c37a6d4ae8168613069d1729e7c31c2cbb0dc96914f994c553dc2ffe8ba5a4d8ea55034fd872cc3b53cb104a
- SSDEEP
  
  98304:1tbG7pEfNMhG4D+IvOjO5wDE3b6JK7PJoAMPW/TA3cldT04S6WBPbX:uFEfmhB+8OSOkoKgQ7SfVbX
Score

8^/10

bootkit persistence
- Executes dropped EXE
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence