b01d1453acaabb526e313b472fe0ff5014cc2a630aab1f635fa7376718b19d64 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b01d1453acaabb526e313b472fe0ff5014cc2a630aab1f635fa7376718b19d64
Size

1.4MB
Sample

221204-esnylseh37
MD5

9437d93b21724e24eb805d183d983dea
SHA1

a4d72dcb0ca3811d6b5b3f23f712531f76696c2f
SHA256

b01d1453acaabb526e313b472fe0ff5014cc2a630aab1f635fa7376718b19d64
SHA512

69ba1f54c499071e2bba8e1972d9f49d2d60e71ec3220693d63cdddddbb5a9607568f365068b7bf402f6c7a272d07d992ae342b09f2ccbcd1818a9199654933e
SSDEEP

24576:yCj5GAgrqEwq7NIydJ4gooNs6JNOYqOyWtNe9C9B4D6GYEhD8mkjC3dLXGyTS8xB:Z5G7rPwuiy8haBXOY0WtNF9B46Yp/kjK

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b01d1453acaabb526e313b472fe0ff5014cc2a630aab1f635fa7376718b19d64
- Size
  
  1.4MB
- MD5
  
  9437d93b21724e24eb805d183d983dea
- SHA1
  
  a4d72dcb0ca3811d6b5b3f23f712531f76696c2f
- SHA256
  
  b01d1453acaabb526e313b472fe0ff5014cc2a630aab1f635fa7376718b19d64
- SHA512
  
  69ba1f54c499071e2bba8e1972d9f49d2d60e71ec3220693d63cdddddbb5a9607568f365068b7bf402f6c7a272d07d992ae342b09f2ccbcd1818a9199654933e
- SSDEEP
  
  24576:yCj5GAgrqEwq7NIydJ4gooNs6JNOYqOyWtNe9C9B4D6GYEhD8mkjC3dLXGyTS8xB:Z5G7rPwuiy8haBXOY0WtNF9B46Yp/kjK
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2