20aa4ddd5331fd1f875a7500ecf6a4191a5f25e06ddb7588bc57b94c45562767 | Triage

Sharing

General

Target

20aa4ddd5331fd1f875a7500ecf6a4191a5f25e06ddb7588bc57b94c45562767
Size

972KB
Sample

221125-ekwcqadf3s
MD5

7148aaff4f8abc928b6d11dcb076d626
SHA1

face1fbe8ad646dca2d6e7124be7039111222b4f
SHA256

20aa4ddd5331fd1f875a7500ecf6a4191a5f25e06ddb7588bc57b94c45562767
SHA512

0757ccd255f0d07e8e26f755383b95ff76a2d173b64f18f1844fd145af2a85e39b763ac716a3e4cae323e3463887022a1ffb099b06de4475ca8ce9b9267b184f
SSDEEP

12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcv:f7YTmhUlV4xUlOJjuN5HeU+hX+etGj

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  20aa4ddd5331fd1f875a7500ecf6a4191a5f25e06ddb7588bc57b94c45562767
- Size
  
  972KB
- MD5
  
  7148aaff4f8abc928b6d11dcb076d626
- SHA1
  
  face1fbe8ad646dca2d6e7124be7039111222b4f
- SHA256
  
  20aa4ddd5331fd1f875a7500ecf6a4191a5f25e06ddb7588bc57b94c45562767
- SHA512
  
  0757ccd255f0d07e8e26f755383b95ff76a2d173b64f18f1844fd145af2a85e39b763ac716a3e4cae323e3463887022a1ffb099b06de4475ca8ce9b9267b184f
- SSDEEP
  
  12288:npZ7RqTHG1GtRmjWjRlgivK2YyUxUi2MOOpnjuNIOHeOPYxYIswU6fsDukauZHcv:f7YTmhUlV4xUlOJjuN5HeU+hX+etGj
Score

7^/10

bootkit persistence
- Deletes itself
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence