4be1bb48359806ecb1f51eb7fe67faf2d40006418d4c8dbdb88188a9b9fc9325 | Triage

Sharing

General

Target

4be1bb48359806ecb1f51eb7fe67faf2d40006418d4c8dbdb88188a9b9fc9325
Size

972KB
Sample

221125-b91f7agb6v
MD5

2a1813f9ca8b35b427f0e109264e68c4
SHA1

36b4f4b70a7722e65d1349564bb5b83ca54e25c3
SHA256

4be1bb48359806ecb1f51eb7fe67faf2d40006418d4c8dbdb88188a9b9fc9325
SHA512

5f0245f3fd1079403b3747603a357f822f0447371c66f1d125488a8a3d6c40c50cf17be55a752dd3e1adaff851e8075e42f7ffa56e3ec46b643d6eb1cb6d9bd8
SSDEEP

12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcY:f7YTmhUlV4xUlOJjuN5HeU+hXnetGj

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  4be1bb48359806ecb1f51eb7fe67faf2d40006418d4c8dbdb88188a9b9fc9325
- Size
  
  972KB
- MD5
  
  2a1813f9ca8b35b427f0e109264e68c4
- SHA1
  
  36b4f4b70a7722e65d1349564bb5b83ca54e25c3
- SHA256
  
  4be1bb48359806ecb1f51eb7fe67faf2d40006418d4c8dbdb88188a9b9fc9325
- SHA512
  
  5f0245f3fd1079403b3747603a357f822f0447371c66f1d125488a8a3d6c40c50cf17be55a752dd3e1adaff851e8075e42f7ffa56e3ec46b643d6eb1cb6d9bd8
- SSDEEP
  
  12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcY:f7YTmhUlV4xUlOJjuN5HeU+hXnetGj
Score

7^/10

bootkit persistence
- Deletes itself
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence