92809fd36454933066fa42f79e1d75f1e6dd9326b70db5172bcb901887a8ddce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92809fd36454933066fa42f79e1d75f1e6dd9326b70db5172bcb901887a8ddce
Size

468KB
Sample

221205-xhcfyafb88
MD5

347c53974f3e3370e84cb5731e68817c
SHA1

82d0a4f539158a54607a770cb64d445d97a88902
SHA256

92809fd36454933066fa42f79e1d75f1e6dd9326b70db5172bcb901887a8ddce
SHA512

925ed5925f99cd6f8c663eb517f56448db835ef9ae287548cfbf3d232cfbd54bc2f42028c747dcdcf4860d442fe62420c0b96a4abdc42a46b67916fc51b4c687
SSDEEP

12288:qrbaIxCgs8b9IQPEir2zfjjhxNtTird4IKD:guIxr3RJWnhlTEdI

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  92809fd36454933066fa42f79e1d75f1e6dd9326b70db5172bcb901887a8ddce
- Size
  
  468KB
- MD5
  
  347c53974f3e3370e84cb5731e68817c
- SHA1
  
  82d0a4f539158a54607a770cb64d445d97a88902
- SHA256
  
  92809fd36454933066fa42f79e1d75f1e6dd9326b70db5172bcb901887a8ddce
- SHA512
  
  925ed5925f99cd6f8c663eb517f56448db835ef9ae287548cfbf3d232cfbd54bc2f42028c747dcdcf4860d442fe62420c0b96a4abdc42a46b67916fc51b4c687
- SSDEEP
  
  12288:qrbaIxCgs8b9IQPEir2zfjjhxNtTird4IKD:guIxr3RJWnhlTEdI
Score

8^/10

bootkit persistence
- Executes dropped EXE
- Deletes itself
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2