Overview

overview

8

Static

static

8

6578626f09...b8.exe

windows7-x64

8

6578626f09...b8.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6578626f095ea7acb704a0c1b631bd5bc7c7487b0aaa23bcb507c86187a0a2b8

  • Size

    105KB

  • Sample

    221203-hm25tsdd45

  • MD5

    9437c7775fe5bce85d1c04235be44caf

  • SHA1

    496cd4818560a200bca60f7215d1283080f543bf

  • SHA256

    6578626f095ea7acb704a0c1b631bd5bc7c7487b0aaa23bcb507c86187a0a2b8

  • SHA512

    4a262d397cef42040b8b7a47c3e6b4fe4fad3ff760d3f921b84e7957512d70171fcb77276e3c58577489f59c618a360c4411602b9504552d8c18abbe485860fa

  • SSDEEP

    3072:bkvPuWtqpbrniaaunSSdZfPqqEnnYTu0BLoutq:bkOJrnLfScPAnr0BLoS

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      6578626f095ea7acb704a0c1b631bd5bc7c7487b0aaa23bcb507c86187a0a2b8

    • Size

      105KB

    • MD5

      9437c7775fe5bce85d1c04235be44caf

    • SHA1

      496cd4818560a200bca60f7215d1283080f543bf

    • SHA256

      6578626f095ea7acb704a0c1b631bd5bc7c7487b0aaa23bcb507c86187a0a2b8

    • SHA512

      4a262d397cef42040b8b7a47c3e6b4fe4fad3ff760d3f921b84e7957512d70171fcb77276e3c58577489f59c618a360c4411602b9504552d8c18abbe485860fa

    • SSDEEP

      3072:bkvPuWtqpbrniaaunSSdZfPqqEnnYTu0BLoutq:bkOJrnLfScPAnr0BLoS

    Score
    8/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks