Overview

overview

8

Static

static

e4e7ca5989...23.exe

windows7-x64

8

e4e7ca5989...23.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e4e7ca598920797bae102110bf975c2204c59fb4795e42f730a95be111389f23

  • Size

    4.5MB

  • Sample

    221129-x7867sce5y

  • MD5

    5bc17108151316c630bdd303decfcbbe

  • SHA1

    e349af6b631124efded0bc5cf0afe54b8fcaaabc

  • SHA256

    e4e7ca598920797bae102110bf975c2204c59fb4795e42f730a95be111389f23

  • SHA512

    9bab39b7f5cdcec2cbd80b382c02a571c5ddbd0505cee8d6f225022850602f59d3e34afb6fcf180a2641bbee308587d6e6e3c5a8f715e8a9114686ce405c7a7c

  • SSDEEP

    98304:xYWQttDiH2LMlG4ZbJNn/5WWI4/5/4I7VQXR:xYeH2Cgl4/5QXR

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      e4e7ca598920797bae102110bf975c2204c59fb4795e42f730a95be111389f23

    • Size

      4.5MB

    • MD5

      5bc17108151316c630bdd303decfcbbe

    • SHA1

      e349af6b631124efded0bc5cf0afe54b8fcaaabc

    • SHA256

      e4e7ca598920797bae102110bf975c2204c59fb4795e42f730a95be111389f23

    • SHA512

      9bab39b7f5cdcec2cbd80b382c02a571c5ddbd0505cee8d6f225022850602f59d3e34afb6fcf180a2641bbee308587d6e6e3c5a8f715e8a9114686ce405c7a7c

    • SSDEEP

      98304:xYWQttDiH2LMlG4ZbJNn/5WWI4/5/4I7VQXR:xYeH2Cgl4/5QXR

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks