Overview

overview

8

Static

static

1

GLP_instal...et.exe

windows7-x64

8

GLP_instal...et.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GLP_installer_900221846_market.exe

  • Size

    3.6MB

  • Sample

    230316-a848bagb74

  • MD5

    dd69b6e63b3665bb88f6769d4c65f859

  • SHA1

    9b7fbd06c535c215706194e6783f59e4c3400051

  • SHA256

    9268273c48e4241b28e06bb7b8768077b7a84965dfb16315e7be8839f27425b8

  • SHA512

    772ebbe701a4919fe780cda138fcec3cc9d0d01a4d671f996b9cd9ca94db08f2b0c92ed857e774337353f7125141f6b2b72b5a4b5be1c3f7a4e835635e735966

  • SSDEEP

    49152:k08OhxtUg9OUi82w6aQp9dgS1GUL38XhCOYc3iJXe9emEPGKOPkQThMYRMnm7LBp:k08vdsGaQNgS1C6e6ngKpqN

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      GLP_installer_900221846_market.exe

    • Size

      3.6MB

    • MD5

      dd69b6e63b3665bb88f6769d4c65f859

    • SHA1

      9b7fbd06c535c215706194e6783f59e4c3400051

    • SHA256

      9268273c48e4241b28e06bb7b8768077b7a84965dfb16315e7be8839f27425b8

    • SHA512

      772ebbe701a4919fe780cda138fcec3cc9d0d01a4d671f996b9cd9ca94db08f2b0c92ed857e774337353f7125141f6b2b72b5a4b5be1c3f7a4e835635e735966

    • SSDEEP

      49152:k08OhxtUg9OUi82w6aQp9dgS1GUL38XhCOYc3iJXe9emEPGKOPkQThMYRMnm7LBp:k08vdsGaQNgS1C6e6ngKpqN

    Score
    8/10
    bootkitpersistence

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks