5a9dda2ea930007a627c4387b91deafee5a7fc6965a010f2157a619b75c28f6b | Triage

Sharing

General

Target

5a9dda2ea930007a627c4387b91deafee5a7fc6965a010f2157a619b75c28f6b
Size

3.7MB
Sample

221125-zkys3aeb36
MD5

ac0f14b58fe81827c67608c5f3585386
SHA1

c354663c7bb6ed1236dc82d4d8810e050f9e84a6
SHA256

5a9dda2ea930007a627c4387b91deafee5a7fc6965a010f2157a619b75c28f6b
SHA512

1b54cacbf87e6e3ec8bc7ae88f570f0f12ad8a033e599b66a40cbe889a11bf86d1d4193b9a6ec0f5ea2cf4c99f51281b95125fe1f6ff3b2bccada3dae17dbee3
SSDEEP

49152:aayks+/oFSGLqQ/eHAIQZtDZ4ij4ibuaf/7A3G9VDCHIQG/QZgPOq7:4S/oF/LqQ/eH5QZtDcif7AXO

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  5a9dda2ea930007a627c4387b91deafee5a7fc6965a010f2157a619b75c28f6b
- Size
  
  3.7MB
- MD5
  
  ac0f14b58fe81827c67608c5f3585386
- SHA1
  
  c354663c7bb6ed1236dc82d4d8810e050f9e84a6
- SHA256
  
  5a9dda2ea930007a627c4387b91deafee5a7fc6965a010f2157a619b75c28f6b
- SHA512
  
  1b54cacbf87e6e3ec8bc7ae88f570f0f12ad8a033e599b66a40cbe889a11bf86d1d4193b9a6ec0f5ea2cf4c99f51281b95125fe1f6ff3b2bccada3dae17dbee3
- SSDEEP
  
  49152:aayks+/oFSGLqQ/eHAIQZtDZ4ij4ibuaf/7A3G9VDCHIQG/QZgPOq7:4S/oF/LqQ/eH5QZtDcif7AXO
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence