0de75e022e5482efde0031b0482d69f1d0e23b4121da220f5ff58e7ccaa8737c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0de75e022e5482efde0031b0482d69f1d0e23b4121da220f5ff58e7ccaa8737c
Size

726KB
Sample

221106-lqmfbsebh2
MD5

09830ffd7fad72632fee4d98fef15e90
SHA1

f5107755b6dc5b80623ad37d003fdd0c4213b159
SHA256

0de75e022e5482efde0031b0482d69f1d0e23b4121da220f5ff58e7ccaa8737c
SHA512

6bfcbe2c910542bd3c625a4c00718d0a68ec1369c67e9e7f577c5d66fe8f87d8d3cbd4f2213f2a1f88a32847c4f613c3c2778700be09430668ad9e9b17c165e2
SSDEEP

12288:7wECaUglPnFsk7P0UahDyDT1UBRXjIjpVXgsDagr:7wEC70qkgUahDuCRbsLr

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  0de75e022e5482efde0031b0482d69f1d0e23b4121da220f5ff58e7ccaa8737c
- Size
  
  726KB
- MD5
  
  09830ffd7fad72632fee4d98fef15e90
- SHA1
  
  f5107755b6dc5b80623ad37d003fdd0c4213b159
- SHA256
  
  0de75e022e5482efde0031b0482d69f1d0e23b4121da220f5ff58e7ccaa8737c
- SHA512
  
  6bfcbe2c910542bd3c625a4c00718d0a68ec1369c67e9e7f577c5d66fe8f87d8d3cbd4f2213f2a1f88a32847c4f613c3c2778700be09430668ad9e9b17c165e2
- SSDEEP
  
  12288:7wECaUglPnFsk7P0UahDyDT1UBRXjIjpVXgsDagr:7wEC70qkgUahDuCRbsLr
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence