b4658ae818f677683377a9c292fa0d508146e4d4b69da75d735ee6308029bea8 | Triage

Sharing

General

Target

b4658ae818f677683377a9c292fa0d508146e4d4b69da75d735ee6308029bea8
Size

624KB
Sample

221203-hr8headg64
MD5

2cf486463b2f8823ceadaf2fbf074800
SHA1

078780951f4111680a7cbcb9a6db76675de4474e
SHA256

b4658ae818f677683377a9c292fa0d508146e4d4b69da75d735ee6308029bea8
SHA512

b3d8261feb95dbc21cb2417b2e592dfbde29104f2a96e6d6166677e5a2c619afcfe9f505993664ef8140e041dd37f55164abf6330bd2fcebe38cb5f65e7811d5
SSDEEP

12288:oYrstT3v9E2Xw7xRawJbb/3BDR8A/b4G5R/91tuA+fbBqcrimf0GT:x0T3v9E2XwNRJx/B1xbNLAFBJu8T

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b4658ae818f677683377a9c292fa0d508146e4d4b69da75d735ee6308029bea8
- Size
  
  624KB
- MD5
  
  2cf486463b2f8823ceadaf2fbf074800
- SHA1
  
  078780951f4111680a7cbcb9a6db76675de4474e
- SHA256
  
  b4658ae818f677683377a9c292fa0d508146e4d4b69da75d735ee6308029bea8
- SHA512
  
  b3d8261feb95dbc21cb2417b2e592dfbde29104f2a96e6d6166677e5a2c619afcfe9f505993664ef8140e041dd37f55164abf6330bd2fcebe38cb5f65e7811d5
- SSDEEP
  
  12288:oYrstT3v9E2Xw7xRawJbb/3BDR8A/b4G5R/91tuA+fbBqcrimf0GT:x0T3v9E2XwNRJx/B1xbNLAFBJu8T
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2