578e0606d93ef9812d2db6285801fea246fb1e931b6ce7e27097aa96f7b5d2be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

578e0606d93ef9812d2db6285801fea246fb1e931b6ce7e27097aa96f7b5d2be
Size

1.4MB
Sample

221206-p7blyade4z
MD5

3498fdb8876a4ed8ec8e9e26ec6cc240
SHA1

20b195128f68f01fd1a6df0f384aec56d5ee000a
SHA256

578e0606d93ef9812d2db6285801fea246fb1e931b6ce7e27097aa96f7b5d2be
SHA512

c811e0b0506bbdb4f65a49b4b29c75ba9991ba0338c9e6245a4ea4d5ae8770beba2ac291beded4d28bd24693ea0d1756c2b5f1683fefffb165c531b7064bbfc2
SSDEEP

24576:EvCZ4Q1gL25DuJUBuR7oYwgZxE8CSkKip+Yg4e86oSyEbnkov:EvCXgguJauRU//PKxYGtnk8

Score

8^/10

aspackv2 bootkit persistence

Malware Config

Targets

- Target
  
  578e0606d93ef9812d2db6285801fea246fb1e931b6ce7e27097aa96f7b5d2be
- Size
  
  1.4MB
- MD5
  
  3498fdb8876a4ed8ec8e9e26ec6cc240
- SHA1
  
  20b195128f68f01fd1a6df0f384aec56d5ee000a
- SHA256
  
  578e0606d93ef9812d2db6285801fea246fb1e931b6ce7e27097aa96f7b5d2be
- SHA512
  
  c811e0b0506bbdb4f65a49b4b29c75ba9991ba0338c9e6245a4ea4d5ae8770beba2ac291beded4d28bd24693ea0d1756c2b5f1683fefffb165c531b7064bbfc2
- SSDEEP
  
  24576:EvCZ4Q1gL25DuJUBuR7oYwgZxE8CSkKip+Yg4e86oSyEbnkov:EvCXgguJauRU//PKxYGtnk8
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence