029b7e3eef4e55b781e45c511d40aa6ce0f856fcfacf99b24f2ebd8ef89fed04 | Triage

Sharing

General

Target

029b7e3eef4e55b781e45c511d40aa6ce0f856fcfacf99b24f2ebd8ef89fed04
Size

493KB
Sample

221106-m2nyzagec3
MD5

0a4a84a82a66dabb72140e108c87b196
SHA1

bbb94a53a895444f26599c1157a5087c4c72a457
SHA256

029b7e3eef4e55b781e45c511d40aa6ce0f856fcfacf99b24f2ebd8ef89fed04
SHA512

af1b07ce189ba70e7bc3e2da70d0e41a9240f53e132d8af1a3da862259a95ee8e553c73dfc59161f76f33f56f85cff009a585c6e31a1417b5e0c7b1208411713
SSDEEP

12288:K1Ra1rN4wopVauKAxZkhwryINtTirdorX:KDrp4XAx+hwrywTEdo

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  029b7e3eef4e55b781e45c511d40aa6ce0f856fcfacf99b24f2ebd8ef89fed04
- Size
  
  493KB
- MD5
  
  0a4a84a82a66dabb72140e108c87b196
- SHA1
  
  bbb94a53a895444f26599c1157a5087c4c72a457
- SHA256
  
  029b7e3eef4e55b781e45c511d40aa6ce0f856fcfacf99b24f2ebd8ef89fed04
- SHA512
  
  af1b07ce189ba70e7bc3e2da70d0e41a9240f53e132d8af1a3da862259a95ee8e553c73dfc59161f76f33f56f85cff009a585c6e31a1417b5e0c7b1208411713
- SSDEEP
  
  12288:K1Ra1rN4wopVauKAxZkhwryINtTirdorX:KDrp4XAx+hwrywTEdo
Score

8^/10

bootkit persistence
- Executes dropped EXE
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2