Overview

overview

7

Static

static

1

360zipsetu...50.exe

windows7-x64

7

360zipsetu...50.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    360zipsetup_4.0.0.1450.exe.zip

  • Size

    13.7MB

  • Sample

    230323-sjxfaaad5z

  • MD5

    feb5f8d0b8837c0da4ea7da0456dc5e3

  • SHA1

    938480ccb256f93cf5188b6496f42ad953283a75

  • SHA256

    4c87021616952f668ca04de30a8e750a4d00c6a5ce675ca018ce79f68ca69651

  • SHA512

    5d68f13baf8122256a6d255d6767e4a1e7b10b9073ce17fdd7c299893202f9ebccc6440df008e072d3d7504334e95b314f03b399d1e5cd4502bfc52e9c8e3677

  • SSDEEP

    393216:tWIj/KExY2YF8CEdkb9w6Q98/bVyD3YqAuUmwBOUN:Dj/KN2YF8RdEw6Q98kD3YBu4d

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      360zipsetup_4.0.0.1450.exe

    • Size

      14.2MB

    • MD5

      4c43d01a35a4fd2d8f938b221695e440

    • SHA1

      1da67276dd0a622c51bbcfd78c7004010ee8ff99

    • SHA256

      99e9a05c4f0783ab82f947e1525b6c37ec7d27b624bc891a0b7744c232414d42

    • SHA512

      83397af443ad6dc2b5ca69967d56aab6f5916c9a9044133aa62c8f1a3ae8ce40cccc3bde8c8d58bdfc81769cd0fd02659b76fad992a6bbce2751f42e9006ccfd

    • SSDEEP

      393216:ZyQjWQzeJD4bIPJpfoGVgq4cZQTSF+66ARzb+r6ZS8FRsb:YQjWQ6OMGncWTAKe06ZS8FRY

    Score
    7/10
    bootkitpersistence

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks