Overview

overview

7

Static

static

c4a7a030fe...e2.exe

windows7-x64

7

c4a7a030fe...e2.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c4a7a030fea08c1b293f1450333a0b226d7ab75928a1adb6e6a51f7e391748e2

  • Size

    972KB

  • Sample

    221124-yarrbsec57

  • MD5

    4222d11ba37d5b8884b4e45ca8aeecee

  • SHA1

    221b7b5378a33811d0caefa955f3a693f7fe3da2

  • SHA256

    c4a7a030fea08c1b293f1450333a0b226d7ab75928a1adb6e6a51f7e391748e2

  • SHA512

    db2a28e904bc5a15a52c99fb5f156b945d159fef2cd373146e6eedb6492f66c5503725bea76eadc77aabbdfbe7b3157c2cfe99a10cc62f72ec91e40c392895bf

  • SSDEEP

    12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcO:f7YTmhUlV4xUlOJjuN5HeU+hX9etGj

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      c4a7a030fea08c1b293f1450333a0b226d7ab75928a1adb6e6a51f7e391748e2

    • Size

      972KB

    • MD5

      4222d11ba37d5b8884b4e45ca8aeecee

    • SHA1

      221b7b5378a33811d0caefa955f3a693f7fe3da2

    • SHA256

      c4a7a030fea08c1b293f1450333a0b226d7ab75928a1adb6e6a51f7e391748e2

    • SHA512

      db2a28e904bc5a15a52c99fb5f156b945d159fef2cd373146e6eedb6492f66c5503725bea76eadc77aabbdfbe7b3157c2cfe99a10cc62f72ec91e40c392895bf

    • SSDEEP

      12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcO:f7YTmhUlV4xUlOJjuN5HeU+hX9etGj

    Score
    7/10
    bootkitpersistence

    • Deletes itself

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks