9e62cd0e66bce54fe29156b3ff0fea78a734baec03150cf697f135384e4e75ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9e62cd0e66bce54fe29156b3ff0fea78a734baec03150cf697f135384e4e75ee
Size

421KB
Sample

221201-arkscaha43
MD5

e96966866ed30da34faff4f00fd681cc
SHA1

cad8cdab79fed6e9c5144697df5f95679aebbefa
SHA256

9e62cd0e66bce54fe29156b3ff0fea78a734baec03150cf697f135384e4e75ee
SHA512

e5989c65510a2dfe3bffc4ebaac0433312da74e672863902ba3eea51d7143440e215ceb399af484fe30fa0b7778743223ea276a9216b87cfd5f2295643b09807
SSDEEP

12288:ZUmh+dU/DBdd1cO5dqpEddplIZVzYKj86sN6A:ZLhkUbBdzcOQEddplspYOjA

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  9e62cd0e66bce54fe29156b3ff0fea78a734baec03150cf697f135384e4e75ee
- Size
  
  421KB
- MD5
  
  e96966866ed30da34faff4f00fd681cc
- SHA1
  
  cad8cdab79fed6e9c5144697df5f95679aebbefa
- SHA256
  
  9e62cd0e66bce54fe29156b3ff0fea78a734baec03150cf697f135384e4e75ee
- SHA512
  
  e5989c65510a2dfe3bffc4ebaac0433312da74e672863902ba3eea51d7143440e215ceb399af484fe30fa0b7778743223ea276a9216b87cfd5f2295643b09807
- SSDEEP
  
  12288:ZUmh+dU/DBdd1cO5dqpEddplIZVzYKj86sN6A:ZLhkUbBdzcOQEddplspYOjA
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2