Overview

overview

8

Static

static

be3bdbc9a1...1a.exe

windows7-x64

8

be3bdbc9a1...1a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    be3bdbc9a1346b56faa5cc7698c21ecdbd46955b9d9bb7d7337af969563a9c1a

  • Size

    354KB

  • Sample

    221206-jml92sga39

  • MD5

    0dd28d57a37d2f086e661c63cab89592

  • SHA1

    b93a89d36d37111cbecb6673a8f2f1fbba968411

  • SHA256

    be3bdbc9a1346b56faa5cc7698c21ecdbd46955b9d9bb7d7337af969563a9c1a

  • SHA512

    c5d4ddb916a3f348a97f09ab9fe23a31cfe8ec2c42d9a16ce970ba815ac3422e534f69be83729b4debb0ae605625d042a6465a10e2f6e9e50e58e5f7ca913ceb

  • SSDEEP

    6144:04+FA+BAiMXHQur9MD7Lk9vtXyCLFlINvWLkNGPTd0owmYUJnByY6WjPwwF9:ZW+iMXHknLSvtbDLkNG1w+pB1pF9

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      be3bdbc9a1346b56faa5cc7698c21ecdbd46955b9d9bb7d7337af969563a9c1a

    • Size

      354KB

    • MD5

      0dd28d57a37d2f086e661c63cab89592

    • SHA1

      b93a89d36d37111cbecb6673a8f2f1fbba968411

    • SHA256

      be3bdbc9a1346b56faa5cc7698c21ecdbd46955b9d9bb7d7337af969563a9c1a

    • SHA512

      c5d4ddb916a3f348a97f09ab9fe23a31cfe8ec2c42d9a16ce970ba815ac3422e534f69be83729b4debb0ae605625d042a6465a10e2f6e9e50e58e5f7ca913ceb

    • SSDEEP

      6144:04+FA+BAiMXHQur9MD7Lk9vtXyCLFlINvWLkNGPTd0owmYUJnByY6WjPwwF9:ZW+iMXHknLSvtbDLkNG1w+pB1pF9

    Score
    8/10
    bootkitpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks