c950b1947f7d9cc3bcc7020de679278d0088b4cffcb6afc39ad70735e3c5fa3c | Triage

Sharing

General

Target

c950b1947f7d9cc3bcc7020de679278d0088b4cffcb6afc39ad70735e3c5fa3c
Size

836KB
Sample

221204-rr9vxagb94
MD5

a46dd16207a9ef3b37305ba207e4c4d9
SHA1

53d4e858aa1205acdc91524ed3676304ec5bf288
SHA256

c950b1947f7d9cc3bcc7020de679278d0088b4cffcb6afc39ad70735e3c5fa3c
SHA512

d17c2d45a66d86ce194a4576cb13ed61f6b934626cbc834dc4d51c65df53e3250bf68c0b90c8bd320ab08ae092c1d3fc39a65d039cb9e5dfb2769f49cf3a736c
SSDEEP

12288:U/HxSHsMncjYlGOnp4QNbfLGQjBR+sTNhSGwqhO71Svvb+U6f:gR/4c+pvxzTj7XTN9RO5evb+U6f

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  c950b1947f7d9cc3bcc7020de679278d0088b4cffcb6afc39ad70735e3c5fa3c
- Size
  
  836KB
- MD5
  
  a46dd16207a9ef3b37305ba207e4c4d9
- SHA1
  
  53d4e858aa1205acdc91524ed3676304ec5bf288
- SHA256
  
  c950b1947f7d9cc3bcc7020de679278d0088b4cffcb6afc39ad70735e3c5fa3c
- SHA512
  
  d17c2d45a66d86ce194a4576cb13ed61f6b934626cbc834dc4d51c65df53e3250bf68c0b90c8bd320ab08ae092c1d3fc39a65d039cb9e5dfb2769f49cf3a736c
- SSDEEP
  
  12288:U/HxSHsMncjYlGOnp4QNbfLGQjBR+sTNhSGwqhO71Svvb+U6f:gR/4c+pvxzTj7XTN9RO5evb+U6f
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence