b6bab8feba04ae4313e9aa3fa316a8df01f03807720a06f13f970d33c1f5adfe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6bab8feba04ae4313e9aa3fa316a8df01f03807720a06f13f970d33c1f5adfe
Size

1.4MB
Sample

221206-qqgbjaca62
MD5

b1c0f49a4d94e6d63366a3aceed800be
SHA1

c311245ccc7feb1ef16592924e179018d0b67946
SHA256

b6bab8feba04ae4313e9aa3fa316a8df01f03807720a06f13f970d33c1f5adfe
SHA512

210895357dbc8e5c8eb2750ba098fe42d4064343861a71a157c8fe4d0d895c5e3056d425a49d1fa9557043fbbd5673514f9df7a07baa09f5dfe896942de44de7
SSDEEP

24576:TLu1EfXEJz9JzspX9yKuF/jhL8I1aZcYsJ:T1sP7F11EZHu

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b6bab8feba04ae4313e9aa3fa316a8df01f03807720a06f13f970d33c1f5adfe
- Size
  
  1.4MB
- MD5
  
  b1c0f49a4d94e6d63366a3aceed800be
- SHA1
  
  c311245ccc7feb1ef16592924e179018d0b67946
- SHA256
  
  b6bab8feba04ae4313e9aa3fa316a8df01f03807720a06f13f970d33c1f5adfe
- SHA512
  
  210895357dbc8e5c8eb2750ba098fe42d4064343861a71a157c8fe4d0d895c5e3056d425a49d1fa9557043fbbd5673514f9df7a07baa09f5dfe896942de44de7
- SSDEEP
  
  24576:TLu1EfXEJz9JzspX9yKuF/jhL8I1aZcYsJ:T1sP7F11EZHu
Score

8^/10

bootkit persistence
- Drops file in Drivers directory
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence