097f8cae7a277483a9690d5fb7567977bec8968bc83e4b8d2ecd8b931ce3badb | Triage

Sharing

General

Target

097f8cae7a277483a9690d5fb7567977bec8968bc83e4b8d2ecd8b931ce3badb
Size

594KB
Sample

221124-l6yhjaaf7s
MD5

c29f9b6b7174a5c473f5261d92760c2f
SHA1

aa5fe30fd3b063ac506930c93e7fe84a3811be39
SHA256

097f8cae7a277483a9690d5fb7567977bec8968bc83e4b8d2ecd8b931ce3badb
SHA512

1f7fd939cca430235d0b651c4785bc7e2b00bc627e893621ef721dae0325275056b54af2735b98baa0259638a13ae826f9997826070ef5c9d74f5e0d43492aa9
SSDEEP

12288:To+qSgcL1KFzU0W1WgbroM5unIwf9MAsYMuFtjMBzPlY4BrGV2:ToZKGU0gWgvotnplMAu8tjorb

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  DocRepair/DocRepair.exe
- Size
  
  594KB
- MD5
  
  19bd9c6b51d5dc4960a9a0981b61bdea
- SHA1
  
  54cdf79231ff72c5f467b8f37259c05180eddb06
- SHA256
  
  0a4568e5d35750a9b9ba8e66a31c5f7db96517c55f06e6539cae94356c6739b6
- SHA512
  
  4d1304582523cbade0847b9e19cd293ca3c7ec70de5909c2ef7ccba517d492486c62042e4e7187e9ecf5edc7474306b794eb5727f7899d45bf156d2e1818b1f2
- SSDEEP
  
  12288:jh+V08ZQ1dnihUHXVmSZPrChO4VXi6ihll0CMiu76Z/V9342rGwiJv22FJblIgc4:jh+VHZQ7VHXVmS1rChPSZ9rMiuAV9Nq9
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2
- Target
  
  DocRepair/当客软件园.url
- Size
  
  168B
- MD5
  
  f0875b9a0a22c48d5310a1a878b2a02b
- SHA1
  
  235aaf836f8e09bac0fa5985ae7eab15d9051768
- SHA256
  
  4f38e5b5207ea615944f298397f97ec4f18e124498d4777ffb4d9df222371828
- SHA512
  
  172058b8db693e0c6fbbf5d75849eedd665bbefe40ada51dbbe9513194fdb0db9c1f5f9c77f91db9baa67610aae14687ef10afac9b0e543af0f37118a3b8d87e
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

behavioral3

behavioral4