General
-
Target
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9
-
Size
3.3MB
-
Sample
221126-v1p4msed7v
-
MD5
76ebd050fc382b8bf39dbb2999b1c82e
-
SHA1
a475e2ed3ba98284bbca0e587f4534b972798a6b
-
SHA256
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9
-
SHA512
7284b6bb5f038ea411d314ec92592fc1ba5cfdf2c15ace6f11438c50fc9267fa29593c386d32feb914f63ae4f79f5b6a8ad60b13d4d7aa30fdaea103869aa09d
-
SSDEEP
49152:aI1hgSzcdImYvVgvmaaBNxPawGe1Edw4zD9uZucnzc:/hLFmYvVgCSwG9dBPcnI
Behavioral task
behavioral1
Sample
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9
-
Size
3.3MB
-
MD5
76ebd050fc382b8bf39dbb2999b1c82e
-
SHA1
a475e2ed3ba98284bbca0e587f4534b972798a6b
-
SHA256
50022f34f0fe23bdcbbfafcbd864d4af0f0179cabff673c570517ce5050ce5b9
-
SHA512
7284b6bb5f038ea411d314ec92592fc1ba5cfdf2c15ace6f11438c50fc9267fa29593c386d32feb914f63ae4f79f5b6a8ad60b13d4d7aa30fdaea103869aa09d
-
SSDEEP
49152:aI1hgSzcdImYvVgvmaaBNxPawGe1Edw4zD9uZucnzc:/hLFmYvVgCSwG9dBPcnI
Score8/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-