db8aabcab9bf17b51602490c4b6932fd3cb98c669df91528742f930e202793b0 | Triage

Sharing

General

Target

db8aabcab9bf17b51602490c4b6932fd3cb98c669df91528742f930e202793b0
Size

1.1MB
Sample

230315-evz4nadd3x
MD5

cebfdd50697e6660691076b4df90ddcd
SHA1

c5707541797131b37fb13e315c1ac70b6f4825a5
SHA256

db8aabcab9bf17b51602490c4b6932fd3cb98c669df91528742f930e202793b0
SHA512

acc8aef83ce0920e1b217b4ad57a6ae7beab107932ce4b43c9692a3e3a512c36d800fc6dbc85db8d4af86277bcb5a078385c1546f2cecafa419f7aa94f83d448
SSDEEP

24576:jI5v3DwZcpxfUp//wsIqIbgyNNHvdOdms3YunIuKZ3e:E5lfUp//wsN+VOmUYun3KZ3e

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  db8aabcab9bf17b51602490c4b6932fd3cb98c669df91528742f930e202793b0
- Size
  
  1.1MB
- MD5
  
  cebfdd50697e6660691076b4df90ddcd
- SHA1
  
  c5707541797131b37fb13e315c1ac70b6f4825a5
- SHA256
  
  db8aabcab9bf17b51602490c4b6932fd3cb98c669df91528742f930e202793b0
- SHA512
  
  acc8aef83ce0920e1b217b4ad57a6ae7beab107932ce4b43c9692a3e3a512c36d800fc6dbc85db8d4af86277bcb5a078385c1546f2cecafa419f7aa94f83d448
- SSDEEP
  
  24576:jI5v3DwZcpxfUp//wsIqIbgyNNHvdOdms3YunIuKZ3e:E5lfUp//wsN+VOmUYun3KZ3e
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence