cbfbdea26a7168161e525becf3d9b46602e0f4797b5a53017e3184f338dc8cd3 | Triage

Sharing

General

Target

cbfbdea26a7168161e525becf3d9b46602e0f4797b5a53017e3184f338dc8cd3
Size

1013KB
Sample

221124-xvnpqsdc84
MD5

641da3fce8817458cd4a661c1d235a8a
SHA1

af77a0a88d4bfe5705b9ba65fb157367ff5e03db
SHA256

cbfbdea26a7168161e525becf3d9b46602e0f4797b5a53017e3184f338dc8cd3
SHA512

e14fffd86972affc2718a65faca8b488e264c0dd3b96e0819c73cbb6a6ccc51546a5beea38f6506db3c83fad2bd1b2098d821fa87a7eebe20989e2225c8793e8
SSDEEP

24576:rEPrVEkNwwouWihUW3cfwspt82U1VTSv:4CMorfb82U1VTSv

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  cbfbdea26a7168161e525becf3d9b46602e0f4797b5a53017e3184f338dc8cd3
- Size
  
  1013KB
- MD5
  
  641da3fce8817458cd4a661c1d235a8a
- SHA1
  
  af77a0a88d4bfe5705b9ba65fb157367ff5e03db
- SHA256
  
  cbfbdea26a7168161e525becf3d9b46602e0f4797b5a53017e3184f338dc8cd3
- SHA512
  
  e14fffd86972affc2718a65faca8b488e264c0dd3b96e0819c73cbb6a6ccc51546a5beea38f6506db3c83fad2bd1b2098d821fa87a7eebe20989e2225c8793e8
- SSDEEP
  
  24576:rEPrVEkNwwouWihUW3cfwspt82U1VTSv:4CMorfb82U1VTSv
Score

7^/10

bootkit persistence
- Deletes itself
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence