08b7626d1edd084c8046ae31e5f7015b5289819a8a2b9555e317a9bce9848cac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08b7626d1edd084c8046ae31e5f7015b5289819a8a2b9555e317a9bce9848cac
Size

104KB
Sample

221129-qty1radd74
MD5

87d5b5b67e3e6a70600b0f87d807d220
SHA1

bac06268a185ee24039c64d58e7f97ce5f6601f2
SHA256

08b7626d1edd084c8046ae31e5f7015b5289819a8a2b9555e317a9bce9848cac
SHA512

23679a181eb2656ff1683523c45c97bb798bdd32fd5c737e5c5f921f01384defce7a2f395fa9695aff69b6f3658c66f6c422bec5f0ec9bc1a19b020288831331
SSDEEP

1536:/9C0R+dBEI2V5LCniM9IE6PoYvtde3tAbfFkWGq6cjTA:lC0sdBW52niM2Poatded+dkWGqzjTA

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  08b7626d1edd084c8046ae31e5f7015b5289819a8a2b9555e317a9bce9848cac
- Size
  
  104KB
- MD5
  
  87d5b5b67e3e6a70600b0f87d807d220
- SHA1
  
  bac06268a185ee24039c64d58e7f97ce5f6601f2
- SHA256
  
  08b7626d1edd084c8046ae31e5f7015b5289819a8a2b9555e317a9bce9848cac
- SHA512
  
  23679a181eb2656ff1683523c45c97bb798bdd32fd5c737e5c5f921f01384defce7a2f395fa9695aff69b6f3658c66f6c422bec5f0ec9bc1a19b020288831331
- SSDEEP
  
  1536:/9C0R+dBEI2V5LCniM9IE6PoYvtde3tAbfFkWGq6cjTA:lC0sdBW52niM2Poatded+dkWGqzjTA
Score

6^/10

bootkit discovery persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2