Overview

overview

8

Static

static

488d510511...4c.exe

windows7-x64

8

488d510511...4c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    488d510511a11b728aa3a9e83aea08cd9aeb0f417b222b10317b36710e3cd14c

  • Size

    2.6MB

  • Sample

    221128-pefeesge6v

  • MD5

    67576731fcfadc661f99803ceae8d802

  • SHA1

    22077dc301292b73d3bb2eb2f1b79770f518b550

  • SHA256

    488d510511a11b728aa3a9e83aea08cd9aeb0f417b222b10317b36710e3cd14c

  • SHA512

    5f14a361a8f05f5680d70135433cd55e8d7a1dc7dd03218d04143117dbebf17b616d6030b6df0c902f965b9bb1ee56d72516862e9856f9231380543b0f9478be

  • SSDEEP

    49152:g9pRL+saTY7d1eLU4jkwmwVASfQ2AyoNZLB:apRL+h051egwp9ol

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      488d510511a11b728aa3a9e83aea08cd9aeb0f417b222b10317b36710e3cd14c

    • Size

      2.6MB

    • MD5

      67576731fcfadc661f99803ceae8d802

    • SHA1

      22077dc301292b73d3bb2eb2f1b79770f518b550

    • SHA256

      488d510511a11b728aa3a9e83aea08cd9aeb0f417b222b10317b36710e3cd14c

    • SHA512

      5f14a361a8f05f5680d70135433cd55e8d7a1dc7dd03218d04143117dbebf17b616d6030b6df0c902f965b9bb1ee56d72516862e9856f9231380543b0f9478be

    • SSDEEP

      49152:g9pRL+saTY7d1eLU4jkwmwVASfQ2AyoNZLB:apRL+h051egwp9ol

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks