9ae763e49773dd0c829d315b1c21f01d8dda14c8dceb8eb06461dcd006422f9d | Triage

Sharing

General

Target

9ae763e49773dd0c829d315b1c21f01d8dda14c8dceb8eb06461dcd006422f9d
Size

88KB
Sample

221125-h7r6csag32
MD5

61d3d24006ca9566e250365f8a2c425b
SHA1

8b19d4231ca67fe77b81177f18cc9870430c7b94
SHA256

9ae763e49773dd0c829d315b1c21f01d8dda14c8dceb8eb06461dcd006422f9d
SHA512

02423ee84bb8df785308817ece0768667fc103ff358627097b4d3ddd6b63384128799c75114f12b785e3cfa58ebef6d2cbf711a6b8030593809d9be3a1376c6b
SSDEEP

1536:POj2oyAIbs6sKXmfepL7PAjDgydm6xW4lBQ2lvl:PwtPks6sxfeGjs0m6A4lqcv

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  9ae763e49773dd0c829d315b1c21f01d8dda14c8dceb8eb06461dcd006422f9d
- Size
  
  88KB
- MD5
  
  61d3d24006ca9566e250365f8a2c425b
- SHA1
  
  8b19d4231ca67fe77b81177f18cc9870430c7b94
- SHA256
  
  9ae763e49773dd0c829d315b1c21f01d8dda14c8dceb8eb06461dcd006422f9d
- SHA512
  
  02423ee84bb8df785308817ece0768667fc103ff358627097b4d3ddd6b63384128799c75114f12b785e3cfa58ebef6d2cbf711a6b8030593809d9be3a1376c6b
- SSDEEP
  
  1536:POj2oyAIbs6sKXmfepL7PAjDgydm6xW4lBQ2lvl:PwtPks6sxfeGjs0m6A4lqcv
Score

6^/10

bootkit discovery persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2