Overview

overview

10

Static

static

10

8b33acc9a2...9d.exe

windows7-x64

7

8b33acc9a2...9d.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b33acc9a2344d87e6345bb70119006aef540ec9bb2c214e72e07b94b037489d

  • Size

    5.7MB

  • Sample

    230216-x7f6esba7s

  • MD5

    7951e3f1d0e6382b33c589c8c90d6655

  • SHA1

    e27fcaf2df6718ecc4fe4a8e09420da2fbea3e46

  • SHA256

    8b33acc9a2344d87e6345bb70119006aef540ec9bb2c214e72e07b94b037489d

  • SHA512

    f6440fe8de65aad568e65bb6bff561b9017cc0af4191ea47586a5081efc45f80b2f95f02261c9398702b944205cd9272eb973cc25e0c08036ce9dd70e03dcfd5

  • SSDEEP

    98304:QOGtiptonAVJJ6ttIDlG4Bd9n0pVzArOSqeDalc6d:QWfoAd9B0nc9BDal

Score
10/10
blackmoonbootkitpersistenceupx

Malware Config

Targets

    • Target

      8b33acc9a2344d87e6345bb70119006aef540ec9bb2c214e72e07b94b037489d

    • Size

      5.7MB

    • MD5

      7951e3f1d0e6382b33c589c8c90d6655

    • SHA1

      e27fcaf2df6718ecc4fe4a8e09420da2fbea3e46

    • SHA256

      8b33acc9a2344d87e6345bb70119006aef540ec9bb2c214e72e07b94b037489d

    • SHA512

      f6440fe8de65aad568e65bb6bff561b9017cc0af4191ea47586a5081efc45f80b2f95f02261c9398702b944205cd9272eb973cc25e0c08036ce9dd70e03dcfd5

    • SSDEEP

      98304:QOGtiptonAVJJ6ttIDlG4Bd9n0pVzArOSqeDalc6d:QWfoAd9B0nc9BDal

    Score
    7/10
    bootkitpersistenceupx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks