General
-
Target
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41
-
Size
4.8MB
-
Sample
230317-esk7qaeb84
-
MD5
39d67feb8124643f38651849ca0c1084
-
SHA1
172a4189c4c1da8d83ef3548367d96706dcb1cb8
-
SHA256
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41
-
SHA512
18167a8df1274f8145a181fb519f1702b9aaee6ae53cb88e7b05f5278ec6150b6077339389ed1db91d937dc1bbc901324a65f3785cdc86fdf8ba3e938f8d7e22
-
SSDEEP
98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHL3GqHE:fv1GGE5gyjovK65E8oqjLPE
Static task
static1
Behavioral task
behavioral1
Sample
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41.dll
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41.dll
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41
-
Size
4.8MB
-
MD5
39d67feb8124643f38651849ca0c1084
-
SHA1
172a4189c4c1da8d83ef3548367d96706dcb1cb8
-
SHA256
cb71fd0b1308c9b3c9088368074774e08633f4a7d1fcb80cdb4865a2d3ac3c41
-
SHA512
18167a8df1274f8145a181fb519f1702b9aaee6ae53cb88e7b05f5278ec6150b6077339389ed1db91d937dc1bbc901324a65f3785cdc86fdf8ba3e938f8d7e22
-
SSDEEP
98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHL3GqHE:fv1GGE5gyjovK65E8oqjLPE
Score8/10-
Blocklisted process makes network request
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-