0d8a1c06ea65acce47f756c19db19bd057ea24c254b67416f067b33f52153bc2 | Triage

Sharing

General

Target

0d8a1c06ea65acce47f756c19db19bd057ea24c254b67416f067b33f52153bc2
Size

1.7MB
Sample

221206-czt24aha65
MD5

17d80ba03e34e81f0bbe0e5b02a0ebb4
SHA1

169d4d0b4af64f28106ecb40212c2dc4c090e92a
SHA256

0d8a1c06ea65acce47f756c19db19bd057ea24c254b67416f067b33f52153bc2
SHA512

1b283f8b581db43c00dc545b9e24f288c0315b0804056b7d7554db932fc9f2a137d1b2385a2731ddfac35264e59ca88c8230447c58774c02a08fbee407d5b4f8
SSDEEP

49152:E5lfUp//wgN5sf4smDFhS1z+VOmUYurwrn:E5lfU5/w+CwvpVxUYr

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  0d8a1c06ea65acce47f756c19db19bd057ea24c254b67416f067b33f52153bc2
- Size
  
  1.7MB
- MD5
  
  17d80ba03e34e81f0bbe0e5b02a0ebb4
- SHA1
  
  169d4d0b4af64f28106ecb40212c2dc4c090e92a
- SHA256
  
  0d8a1c06ea65acce47f756c19db19bd057ea24c254b67416f067b33f52153bc2
- SHA512
  
  1b283f8b581db43c00dc545b9e24f288c0315b0804056b7d7554db932fc9f2a137d1b2385a2731ddfac35264e59ca88c8230447c58774c02a08fbee407d5b4f8
- SSDEEP
  
  49152:E5lfUp//wgN5sf4smDFhS1z+VOmUYurwrn:E5lfU5/w+CwvpVxUYr
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence