ead4bc07f76e9b32554863c7642d902b4dd4b9751996b30136e1645ca89d1656 | Triage

Sharing

General

Target

ead4bc07f76e9b32554863c7642d902b4dd4b9751996b30136e1645ca89d1656
Size

92KB
Sample

221205-wt7ksadb53
MD5

ad5377c1cf9f37c64cf91347690b6db6
SHA1

61a104c4b8e2f61f00e84a9f711b4c5959eafd7c
SHA256

ead4bc07f76e9b32554863c7642d902b4dd4b9751996b30136e1645ca89d1656
SHA512

cce4ecfcd23b85f422cdeea6d257dab23425e63ad869a74accb6fbe8f9dd91c4ee4f18f833625f0cbd4765da3e679ef8f4a0c12a226eef85d3d8720a9784032b
SSDEEP

1536:UWSbV/v/phbvFh6c+SoYqowqFVh8x2ktZm8xtVpVH7NToBw2cAYXK7O:UWSFph2cMYqowqFa2kq8X9NoBw2iXUO

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  ead4bc07f76e9b32554863c7642d902b4dd4b9751996b30136e1645ca89d1656
- Size
  
  92KB
- MD5
  
  ad5377c1cf9f37c64cf91347690b6db6
- SHA1
  
  61a104c4b8e2f61f00e84a9f711b4c5959eafd7c
- SHA256
  
  ead4bc07f76e9b32554863c7642d902b4dd4b9751996b30136e1645ca89d1656
- SHA512
  
  cce4ecfcd23b85f422cdeea6d257dab23425e63ad869a74accb6fbe8f9dd91c4ee4f18f833625f0cbd4765da3e679ef8f4a0c12a226eef85d3d8720a9784032b
- SSDEEP
  
  1536:UWSbV/v/phbvFh6c+SoYqowqFVh8x2ktZm8xtVpVH7NToBw2cAYXK7O:UWSFph2cMYqowqFa2kq8X9NoBw2iXUO
Score

6^/10

bootkit discovery persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2