Overview

overview

7

Static

static

c96f60d514...fb.exe

windows7-x64

7

c96f60d514...fb.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c96f60d5148757fbc046a167dc6864cd90b0f3a5ec7673e43a8c8281c6c2a9fb

  • Size

    1013KB

  • Sample

    221124-x1vp8sdf77

  • MD5

    2c40c613749264799d97f7662cd817cc

  • SHA1

    b41a2dac0b45ce77323e94f4a49eb734e1ff353b

  • SHA256

    c96f60d5148757fbc046a167dc6864cd90b0f3a5ec7673e43a8c8281c6c2a9fb

  • SHA512

    73d8438460dabae4be5b20ad5a509c09b57fd5e211c1792bc5fc35de410ac99e3efe8e4a504a30c50815c53855f146f7f8476d61180efdd3c298f520b997c7eb

  • SSDEEP

    24576:rEPrVEkNwwouWihUW3cfwspt82UmVTSv:4CMorfb82UmVTSv

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      c96f60d5148757fbc046a167dc6864cd90b0f3a5ec7673e43a8c8281c6c2a9fb

    • Size

      1013KB

    • MD5

      2c40c613749264799d97f7662cd817cc

    • SHA1

      b41a2dac0b45ce77323e94f4a49eb734e1ff353b

    • SHA256

      c96f60d5148757fbc046a167dc6864cd90b0f3a5ec7673e43a8c8281c6c2a9fb

    • SHA512

      73d8438460dabae4be5b20ad5a509c09b57fd5e211c1792bc5fc35de410ac99e3efe8e4a504a30c50815c53855f146f7f8476d61180efdd3c298f520b997c7eb

    • SSDEEP

      24576:rEPrVEkNwwouWihUW3cfwspt82UmVTSv:4CMorfb82UmVTSv

    Score
    7/10
    bootkitpersistence

    • Deletes itself

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks