General
-
Target
e5d090804e23c6af14e56a86f77a807a01fc584530e84dcc504dacce8a978ea8
-
Size
645KB
-
Sample
221106-p4vkmscca8
-
MD5
05053dfc4126854e877568ab65973ca2
-
SHA1
adb5c1bd5e4d7ad2df4c18853795d2a4a2caf931
-
SHA256
e5d090804e23c6af14e56a86f77a807a01fc584530e84dcc504dacce8a978ea8
-
SHA512
98996c702065de8d529b9797615de1bfd4dd277f845b07dfec961f5d5f30c12ec86693e930e22066048ecab90ddd8145e01bfd65222a10e65a0132abdae7e1b0
-
SSDEEP
12288:eRRbwLC2zgOEntneFQxalz36HmQTvtYUYIGCw/8PT4gwDG3Kgt7o9:wMn0OE5Sz36rTms13JK9
Malware Config
Targets
-
-
Target
e5d090804e23c6af14e56a86f77a807a01fc584530e84dcc504dacce8a978ea8
-
Size
645KB
-
MD5
05053dfc4126854e877568ab65973ca2
-
SHA1
adb5c1bd5e4d7ad2df4c18853795d2a4a2caf931
-
SHA256
e5d090804e23c6af14e56a86f77a807a01fc584530e84dcc504dacce8a978ea8
-
SHA512
98996c702065de8d529b9797615de1bfd4dd277f845b07dfec961f5d5f30c12ec86693e930e22066048ecab90ddd8145e01bfd65222a10e65a0132abdae7e1b0
-
SSDEEP
12288:eRRbwLC2zgOEntneFQxalz36HmQTvtYUYIGCw/8PT4gwDG3Kgt7o9:wMn0OE5Sz36rTms13JK9
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-