General
-
Target
0643719ed73a3913aada57b138acc5411a85c7d23e40fda79444831473669ca3
-
Size
841KB
-
Sample
221203-w53e7shf9w
-
MD5
04bbd56f0a854d71cce6aaefeaad2bba
-
SHA1
d2abdbf0af870358df2ecc2d0e0ef8b75a84e657
-
SHA256
0643719ed73a3913aada57b138acc5411a85c7d23e40fda79444831473669ca3
-
SHA512
8671ab71dc1aa518374744ab0b6a8130ce73128e979a7b3e3f776a83255b71b968839081ba4ce5e19c4e6b28fd05d864a6ff27a377b6c0635e40280e3abaa4b4
-
SSDEEP
12288:xCbBaw51S/gOAK9RRFpxxGeVQoPoHe921JcYbZAKrB05tdHHPmJwPzt4OuAErKGT:4QwrS/9AKrVKXjRZ85tdPmJY5PEWG
Malware Config
Targets
-
-
Target
0643719ed73a3913aada57b138acc5411a85c7d23e40fda79444831473669ca3
-
Size
841KB
-
MD5
04bbd56f0a854d71cce6aaefeaad2bba
-
SHA1
d2abdbf0af870358df2ecc2d0e0ef8b75a84e657
-
SHA256
0643719ed73a3913aada57b138acc5411a85c7d23e40fda79444831473669ca3
-
SHA512
8671ab71dc1aa518374744ab0b6a8130ce73128e979a7b3e3f776a83255b71b968839081ba4ce5e19c4e6b28fd05d864a6ff27a377b6c0635e40280e3abaa4b4
-
SSDEEP
12288:xCbBaw51S/gOAK9RRFpxxGeVQoPoHe921JcYbZAKrB05tdHHPmJwPzt4OuAErKGT:4QwrS/9AKrVKXjRZ85tdPmJY5PEWG
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-