9e28afe5b53da58aefc26e23eb600de4828acf4d7b42b8ade6ab34b6a9724162 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9e28afe5b53da58aefc26e23eb600de4828acf4d7b42b8ade6ab34b6a9724162
Size

210KB
Sample

221203-wg2trscc26
MD5

12ef3d9130eff317e91e29fcb9404d9e
SHA1

ccd65ba707b5018ef01c1903e24543fb8ca4d86d
SHA256

9e28afe5b53da58aefc26e23eb600de4828acf4d7b42b8ade6ab34b6a9724162
SHA512

700335afebb13286724418a1304819e1a312a78c0ed18d3d1e156ca2d710f4fe979f08ef114b239ad3564adbb94790a513cd0b0b24b805f06b929a11562ca42b
SSDEEP

6144:kOYhHKkXm0Pw0DYws3ZcDOQKN8Q2ZGStb:/+HKk20w3wKWvb

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  9e28afe5b53da58aefc26e23eb600de4828acf4d7b42b8ade6ab34b6a9724162
- Size
  
  210KB
- MD5
  
  12ef3d9130eff317e91e29fcb9404d9e
- SHA1
  
  ccd65ba707b5018ef01c1903e24543fb8ca4d86d
- SHA256
  
  9e28afe5b53da58aefc26e23eb600de4828acf4d7b42b8ade6ab34b6a9724162
- SHA512
  
  700335afebb13286724418a1304819e1a312a78c0ed18d3d1e156ca2d710f4fe979f08ef114b239ad3564adbb94790a513cd0b0b24b805f06b929a11562ca42b
- SSDEEP
  
  6144:kOYhHKkXm0Pw0DYws3ZcDOQKN8Q2ZGStb:/+HKk20w3wKWvb
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2