Overview

overview

7

Static

static

1

uptodown-g...01.exe

windows7-x64

7

uptodown-g...01.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    uptodown-gameloop-1-0-01.exe

  • Size

    3.6MB

  • Sample

    230323-2t747scf8v

  • MD5

    b587203da58a62fe7bfe8d8b171e014b

  • SHA1

    0b82ed301a67eb1a00cbe52eac284698a1ebd423

  • SHA256

    a23945c99f549c729b6e88ed249196d20e365da1fd328affe8033aba249e786e

  • SHA512

    4a5125a3fac6b0c1b46e75706c533c78b7f7fcdff8ecb1605e7430b6d417d977f147bce63150d3c1cce5ecd7fd547c8ce1fce84001d7fb70a447da4b166fa0d7

  • SSDEEP

    98304:LTyXLwBG1SqaMx+Ww1hWu0DB7DoKpAqtz:LTBACww6DFNGqp

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      uptodown-gameloop-1-0-01.exe

    • Size

      3.6MB

    • MD5

      b587203da58a62fe7bfe8d8b171e014b

    • SHA1

      0b82ed301a67eb1a00cbe52eac284698a1ebd423

    • SHA256

      a23945c99f549c729b6e88ed249196d20e365da1fd328affe8033aba249e786e

    • SHA512

      4a5125a3fac6b0c1b46e75706c533c78b7f7fcdff8ecb1605e7430b6d417d977f147bce63150d3c1cce5ecd7fd547c8ce1fce84001d7fb70a447da4b166fa0d7

    • SSDEEP

      98304:LTyXLwBG1SqaMx+Ww1hWu0DB7DoKpAqtz:LTBACww6DFNGqp

    Score
    7/10
    bootkitpersistence

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks