Overview

overview

8

Static

static

9b52b43aee...07.exe

windows7-x64

3

9b52b43aee...07.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9b52b43aee2258bcfce7410714955a4846cf6148b9c420a8deb797d792ae8207

  • Size

    20KB

  • Sample

    221205-g7fxnadc37

  • MD5

    1208531de08e2cc108ea9dc2b02a8e40

  • SHA1

    6f7c48c22a1d310912fe9cdc9690c2ef1ad82d55

  • SHA256

    9b52b43aee2258bcfce7410714955a4846cf6148b9c420a8deb797d792ae8207

  • SHA512

    60a7968fa1065fe5d70d2c7f721dc54d5885b829f315287378a341d4dcdaaf16eb51d3a53113693667f46a64f218dcff132e9bd495caffeb3f59f2237ba155b5

  • SSDEEP

    384:Gz4PQJ55g8SYRsqNvSEB4c3rlx680RQdW2YAaBRRLTAltjFRgxwskxl:Gz1FFScHNqI/680RQMCaBIPawnxl

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      9b52b43aee2258bcfce7410714955a4846cf6148b9c420a8deb797d792ae8207

    • Size

      20KB

    • MD5

      1208531de08e2cc108ea9dc2b02a8e40

    • SHA1

      6f7c48c22a1d310912fe9cdc9690c2ef1ad82d55

    • SHA256

      9b52b43aee2258bcfce7410714955a4846cf6148b9c420a8deb797d792ae8207

    • SHA512

      60a7968fa1065fe5d70d2c7f721dc54d5885b829f315287378a341d4dcdaaf16eb51d3a53113693667f46a64f218dcff132e9bd495caffeb3f59f2237ba155b5

    • SSDEEP

      384:Gz4PQJ55g8SYRsqNvSEB4c3rlx680RQdW2YAaBRRLTAltjFRgxwskxl:Gz1FFScHNqI/680RQMCaBIPawnxl

    Score
    8/10
    bootkitpersistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks