bce27c65838c7c49b49245c109978e2d012f4567cd938d020e747e3db847fa1c | Triage

Sharing

General

Target

bce27c65838c7c49b49245c109978e2d012f4567cd938d020e747e3db847fa1c
Size

609KB
Sample

221203-gzfxpaeg4x
MD5

618ade4e630f0fc2563df1e2912301eb
SHA1

cb678dd8e083f891afdfe9c6e7cffb787cc2f785
SHA256

bce27c65838c7c49b49245c109978e2d012f4567cd938d020e747e3db847fa1c
SHA512

e8f5d4c51bb51d28a8ee1d459849c21f104545af11f83d12f624555b133f2d56e5c608185483cb00408ec5907d2ec4258488c9ec828c2cdf3b4905127217eb52
SSDEEP

6144:Y5E6ftgX/kGMGOMtiRvbFzAgnCheJmA5ufN6igua+z4AswiZcaFxA:4V+IGOfzygnbJmA5ufjgua1waFxA

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  bce27c65838c7c49b49245c109978e2d012f4567cd938d020e747e3db847fa1c
- Size
  
  609KB
- MD5
  
  618ade4e630f0fc2563df1e2912301eb
- SHA1
  
  cb678dd8e083f891afdfe9c6e7cffb787cc2f785
- SHA256
  
  bce27c65838c7c49b49245c109978e2d012f4567cd938d020e747e3db847fa1c
- SHA512
  
  e8f5d4c51bb51d28a8ee1d459849c21f104545af11f83d12f624555b133f2d56e5c608185483cb00408ec5907d2ec4258488c9ec828c2cdf3b4905127217eb52
- SSDEEP
  
  6144:Y5E6ftgX/kGMGOMtiRvbFzAgnCheJmA5ufN6igua+z4AswiZcaFxA:4V+IGOfzygnbJmA5ufjgua1waFxA
Score

8^/10

bootkit persistence
- Executes dropped EXE
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2