2b18d7abce8c5bd52de6a0e9bca0b209b43081fd577d87c6375b812bbfac34d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b18d7abce8c5bd52de6a0e9bca0b209b43081fd577d87c6375b812bbfac34d8
Size

3.7MB
Sample

230116-etpxasda41
MD5

61bfd979bdf241f35178b85e9b8dd950
SHA1

a1a65d16a7f3191c91fa1fc6209d146163994f0f
SHA256

2b18d7abce8c5bd52de6a0e9bca0b209b43081fd577d87c6375b812bbfac34d8
SHA512

570f6ec43e199f11059d2b4a7ecdf6d93ef087a62a21c505dd7e9c2153468b65c0d60d2f6bb970ead6ed4f62f50865155e1540d376c62adee2654fe19508f40d
SSDEEP

49152:uP1gXe/EAKKhq6c+JCvYB+75mSusHtGYNn8zyhAahY:U1gXr2c+/B+znFhY

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  2b18d7abce8c5bd52de6a0e9bca0b209b43081fd577d87c6375b812bbfac34d8
- Size
  
  3.7MB
- MD5
  
  61bfd979bdf241f35178b85e9b8dd950
- SHA1
  
  a1a65d16a7f3191c91fa1fc6209d146163994f0f
- SHA256
  
  2b18d7abce8c5bd52de6a0e9bca0b209b43081fd577d87c6375b812bbfac34d8
- SHA512
  
  570f6ec43e199f11059d2b4a7ecdf6d93ef087a62a21c505dd7e9c2153468b65c0d60d2f6bb970ead6ed4f62f50865155e1540d376c62adee2654fe19508f40d
- SSDEEP
  
  49152:uP1gXe/EAKKhq6c+JCvYB+75mSusHtGYNn8zyhAahY:U1gXr2c+/B+znFhY
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence