General
-
Target
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb
-
Size
280KB
-
Sample
221203-gp4k1aea9z
-
MD5
6189aa9cd597f9a1ff1d4f4197ab16c0
-
SHA1
7f658224a2e34375469710c6e64b9ad81d6b426f
-
SHA256
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb
-
SHA512
6a1552784e8689768e12571246deff4135341c3242262b24dbdb0364487b35e8df0f43d543e9f1905dca0d9e1696fcc8dc24f10ea629a2992df5cfbcc943dcbf
-
SSDEEP
6144:iKRS87kW10IVb7LZ72Nmm6Sr00wtKnHQ:f7kQHZ7ommrg0wO
Static task
static1
Behavioral task
behavioral1
Sample
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb
-
Size
280KB
-
MD5
6189aa9cd597f9a1ff1d4f4197ab16c0
-
SHA1
7f658224a2e34375469710c6e64b9ad81d6b426f
-
SHA256
d0ee8ab8ec997c1b134bc9516f0bc788bc08a770f5f4d56b4c5bff3fbce55beb
-
SHA512
6a1552784e8689768e12571246deff4135341c3242262b24dbdb0364487b35e8df0f43d543e9f1905dca0d9e1696fcc8dc24f10ea629a2992df5cfbcc943dcbf
-
SSDEEP
6144:iKRS87kW10IVb7LZ72Nmm6Sr00wtKnHQ:f7kQHZ7ommrg0wO
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-