General
-
Target
92ac4f64fb94079b74a4c7722a76cc7567cc0a892f26184381c809c97a3fc5c0
-
Size
190KB
-
Sample
221107-c8kj1sdeh8
-
MD5
0652f1f01e967e3220dbe1954397f221
-
SHA1
3ab1daa6bf42a31a38d6c25c1968af8fc52f3588
-
SHA256
92ac4f64fb94079b74a4c7722a76cc7567cc0a892f26184381c809c97a3fc5c0
-
SHA512
9c2deb31d90d3ab8e35de7ac3e5255b453e10066c543eda36f88854461a8e70e28955728f798323ca9673b6787d037447baf02c15dfa5dc2f6f149bdaba505b4
-
SSDEEP
3072:GtjGnXCrbdXw+XeRlSSfHZTnGsxNnEu+EOLdhLO/mN/I/IL:GtjGSrbdXwYe3SIHZSsxNnEi4jS/mN/t
Malware Config
Targets
-
-
Target
92ac4f64fb94079b74a4c7722a76cc7567cc0a892f26184381c809c97a3fc5c0
-
Size
190KB
-
MD5
0652f1f01e967e3220dbe1954397f221
-
SHA1
3ab1daa6bf42a31a38d6c25c1968af8fc52f3588
-
SHA256
92ac4f64fb94079b74a4c7722a76cc7567cc0a892f26184381c809c97a3fc5c0
-
SHA512
9c2deb31d90d3ab8e35de7ac3e5255b453e10066c543eda36f88854461a8e70e28955728f798323ca9673b6787d037447baf02c15dfa5dc2f6f149bdaba505b4
-
SSDEEP
3072:GtjGnXCrbdXw+XeRlSSfHZTnGsxNnEu+EOLdhLO/mN/I/IL:GtjGSrbdXwYe3SIHZSsxNnEi4jS/mN/t
Score8/10-
Drops file in Drivers directory
-
Sets DLL path for service in the registry
-
Deletes itself
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-