df0982d6e87795a4d01dae1f615651eb9e04ac8d85fa391e5c93dd9ef2b357cb | Triage

Sharing

General

Target

df0982d6e87795a4d01dae1f615651eb9e04ac8d85fa391e5c93dd9ef2b357cb
Size

1.2MB
Sample

221124-blhlgace6v
MD5

2a8d83e32a5121cfa09162ac404e3cb0
SHA1

7a0a4c67de5f3e075a0056a0bca70a38c1d948c4
SHA256

df0982d6e87795a4d01dae1f615651eb9e04ac8d85fa391e5c93dd9ef2b357cb
SHA512

d61f8319cf3c35879c991a90c6921da38b788276d8a81099388a47e63f6c7f8090b351bb84acba8ed616528a6a217e99f4195944c16460cc8096a9b616567e08
SSDEEP

24576:eBZsgsikjQ3l7jp/HTan8b8tiHlBqTXABN0XGVHlo:ekbikk37/HTw08tglBqTwBqWN

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  df0982d6e87795a4d01dae1f615651eb9e04ac8d85fa391e5c93dd9ef2b357cb
- Size
  
  1.2MB
- MD5
  
  2a8d83e32a5121cfa09162ac404e3cb0
- SHA1
  
  7a0a4c67de5f3e075a0056a0bca70a38c1d948c4
- SHA256
  
  df0982d6e87795a4d01dae1f615651eb9e04ac8d85fa391e5c93dd9ef2b357cb
- SHA512
  
  d61f8319cf3c35879c991a90c6921da38b788276d8a81099388a47e63f6c7f8090b351bb84acba8ed616528a6a217e99f4195944c16460cc8096a9b616567e08
- SSDEEP
  
  24576:eBZsgsikjQ3l7jp/HTan8b8tiHlBqTXABN0XGVHlo:ekbikk37/HTw08tglBqTwBqWN
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2