Overview

overview

6

Static

static

3d50e02192...55.exe

windows7-x64

6

3d50e02192...55.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3d50e021926e4b5820cdefcd170443d8316c20c355d0e217d3c5b10c16f26655

  • Size

    802KB

  • Sample

    221125-yektksdg4w

  • MD5

    065b16218eac16ad18c6fe3083c2cb68

  • SHA1

    fca7921e462caff6c4526586bf37d316e93f4a24

  • SHA256

    3d50e021926e4b5820cdefcd170443d8316c20c355d0e217d3c5b10c16f26655

  • SHA512

    12d7e3930a31f6e7e157054ef51e7ceeb0f9da1609283eea31d5cb97bdb3926ebbb9b7c580ae232fa018dbeb10af86782708d424e080199bccda80a4f0c57e4e

  • SSDEEP

    12288:7Oe55B0myhPscdQifAiuJzLNAYE7UWfb695k3mwJNgle+esTCmXW:7Oez0mLqQifA/zxAr42295kWwct2mG

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      3d50e021926e4b5820cdefcd170443d8316c20c355d0e217d3c5b10c16f26655

    • Size

      802KB

    • MD5

      065b16218eac16ad18c6fe3083c2cb68

    • SHA1

      fca7921e462caff6c4526586bf37d316e93f4a24

    • SHA256

      3d50e021926e4b5820cdefcd170443d8316c20c355d0e217d3c5b10c16f26655

    • SHA512

      12d7e3930a31f6e7e157054ef51e7ceeb0f9da1609283eea31d5cb97bdb3926ebbb9b7c580ae232fa018dbeb10af86782708d424e080199bccda80a4f0c57e4e

    • SSDEEP

      12288:7Oe55B0myhPscdQifAiuJzLNAYE7UWfb695k3mwJNgle+esTCmXW:7Oez0mLqQifA/zxAr42295kWwct2mG

    Score
    6/10
    bootkitpersistence

    • Adds Run key to start application

      persistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks