General

  • Target

    5fa1276d1cdf81dff7410ee7d0d4c87e9bd12db41366d171cfae7e2ca70765bd

  • Size

    4.8MB

  • Sample

    230323-1xv4daad83

  • MD5

    217822500a8977b0bf30a5950e43b09e

  • SHA1

    9b5282802926767072e14899dc017f5544bf335f

  • SHA256

    5fa1276d1cdf81dff7410ee7d0d4c87e9bd12db41366d171cfae7e2ca70765bd

  • SHA512

    2c77db3f6b0f3dc9afea8caf99450030a1ead8722ca49d1feec3931fd7d2a2c76fbc9b04537c3761ac328fb10cb4126b812af661c23006c18654779177f01d64

  • SSDEEP

    98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHL3GqHqC:fv1GGE5gyjovK65E8oqjLPV

Score
8/10

Malware Config

Targets

    • Target

      5fa1276d1cdf81dff7410ee7d0d4c87e9bd12db41366d171cfae7e2ca70765bd

    • Size

      4.8MB

    • MD5

      217822500a8977b0bf30a5950e43b09e

    • SHA1

      9b5282802926767072e14899dc017f5544bf335f

    • SHA256

      5fa1276d1cdf81dff7410ee7d0d4c87e9bd12db41366d171cfae7e2ca70765bd

    • SHA512

      2c77db3f6b0f3dc9afea8caf99450030a1ead8722ca49d1feec3931fd7d2a2c76fbc9b04537c3761ac328fb10cb4126b812af661c23006c18654779177f01d64

    • SSDEEP

      98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHL3GqHqC:fv1GGE5gyjovK65E8oqjLPV

    Score
    8/10
    • Blocklisted process makes network request

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Bootkit

1
T1067

Discovery

System Information Discovery

1
T1082

Tasks