7dda10f0228560d854f40a1aae97091765794134946b934752a96c71f83d8eea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7dda10f0228560d854f40a1aae97091765794134946b934752a96c71f83d8eea
Size

39KB
Sample

221128-fjk12afh63
MD5

5808e2db899ea24dd2a058ba5f6437c8
SHA1

cc1fc5bf655caa9f3c9c85db16dc446fa54ff9f9
SHA256

7dda10f0228560d854f40a1aae97091765794134946b934752a96c71f83d8eea
SHA512

f96fe2cd956377213819aa5d7b1577436d21717699430d53674d4295e4380fc4b6fe86eb879db9eda8e334ca1797ff123f34c889c65f2eb20cc68c4a4d8162df
SSDEEP

768:rbnN8EpeuhGp1+nQPOB/cWtlCZHToiTeZAlk:rbnN8IjGOBkWtLCiAl

Score

8^/10

bootkit persistence upx

Malware Config

Targets

- Target
  
  7dda10f0228560d854f40a1aae97091765794134946b934752a96c71f83d8eea
- Size
  
  39KB
- MD5
  
  5808e2db899ea24dd2a058ba5f6437c8
- SHA1
  
  cc1fc5bf655caa9f3c9c85db16dc446fa54ff9f9
- SHA256
  
  7dda10f0228560d854f40a1aae97091765794134946b934752a96c71f83d8eea
- SHA512
  
  f96fe2cd956377213819aa5d7b1577436d21717699430d53674d4295e4380fc4b6fe86eb879db9eda8e334ca1797ff123f34c889c65f2eb20cc68c4a4d8162df
- SSDEEP
  
  768:rbnN8EpeuhGp1+nQPOB/cWtlCZHToiTeZAlk:rbnN8IjGOBkWtLCiAl
Score

8^/10

bootkit persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistenceupx

behavioral2

bootkitpersistenceupx