Overview

overview

7

Static

static

935fde514a...ae.exe

windows7-x64

7

935fde514a...ae.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    935fde514a701d9181d0d343f2082416d1661fbca9835db53a62f270bceb0dae

  • Size

    883KB

  • Sample

    221125-yerxwsdg51

  • MD5

    09f050c10db97929c8fea54bb4d62508

  • SHA1

    89f5ee58536f00cf564226a4c6637e0dc1ac3346

  • SHA256

    935fde514a701d9181d0d343f2082416d1661fbca9835db53a62f270bceb0dae

  • SHA512

    3ec72486e5d5959778ff5ac2e56687a175f0cd071ca29ccea77f26dd34ee1b22f93b67e135ef904fbd7c3dce2e65cd8328bf5929a3d6ee973bef15ab64371e5c

  • SSDEEP

    12288:gm+eQydQu3K27bMuLBJic2Lb3eKLhklAwWmTu8S6u6v3Ic7rvDRUWFgwMqYUhcYI:g9m7SlnxhklQm3tUg8c+md2

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      935fde514a701d9181d0d343f2082416d1661fbca9835db53a62f270bceb0dae

    • Size

      883KB

    • MD5

      09f050c10db97929c8fea54bb4d62508

    • SHA1

      89f5ee58536f00cf564226a4c6637e0dc1ac3346

    • SHA256

      935fde514a701d9181d0d343f2082416d1661fbca9835db53a62f270bceb0dae

    • SHA512

      3ec72486e5d5959778ff5ac2e56687a175f0cd071ca29ccea77f26dd34ee1b22f93b67e135ef904fbd7c3dce2e65cd8328bf5929a3d6ee973bef15ab64371e5c

    • SSDEEP

      12288:gm+eQydQu3K27bMuLBJic2Lb3eKLhklAwWmTu8S6u6v3Ic7rvDRUWFgwMqYUhcYI:g9m7SlnxhklQm3tUg8c+md2

    Score
    7/10
    bootkitpersistence

    • Deletes itself

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks