Overview

overview

8

Static

static

bb07ed5e93...ad.exe

windows7-x64

8

bb07ed5e93...ad.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bb07ed5e931d63b1313ce016feb64416343ce724d2744bb458146b54acd5c9ad

  • Size

    421KB

  • Sample

    221205-yctnpsch5s

  • MD5

    2191b9f9105f24232a91c030ee843f95

  • SHA1

    a6edb3ce6f9f0b07c7786c301710ce78007fb094

  • SHA256

    bb07ed5e931d63b1313ce016feb64416343ce724d2744bb458146b54acd5c9ad

  • SHA512

    96d617a464ae965d6aa21a0c68c92fbfb390f778fdf13d947174f07cfc0db5159e783ede9f92146429be586d62dae17d4ad67c01ce5f423a80fce79f2406fbbc

  • SSDEEP

    12288:hEfrpWmQBXPi7+eoJ75WTE4DQFu/U3buRKlemZ9DnGAeduu+fz6h4C:WjpWmQZPe+4T1uzzk

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      bb07ed5e931d63b1313ce016feb64416343ce724d2744bb458146b54acd5c9ad

    • Size

      421KB

    • MD5

      2191b9f9105f24232a91c030ee843f95

    • SHA1

      a6edb3ce6f9f0b07c7786c301710ce78007fb094

    • SHA256

      bb07ed5e931d63b1313ce016feb64416343ce724d2744bb458146b54acd5c9ad

    • SHA512

      96d617a464ae965d6aa21a0c68c92fbfb390f778fdf13d947174f07cfc0db5159e783ede9f92146429be586d62dae17d4ad67c01ce5f423a80fce79f2406fbbc

    • SSDEEP

      12288:hEfrpWmQBXPi7+eoJ75WTE4DQFu/U3buRKlemZ9DnGAeduu+fz6h4C:WjpWmQZPe+4T1uzzk

    Score
    8/10
    bootkitpersistence

    • Creates new service(s)

      persistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

New Service

1
T1050

Bootkit

1
T1067

Privilege Escalation

New Service

1
T1050

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks