General
-
Target
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055
-
Size
4.2MB
-
Sample
230324-e7xt3acc39
-
MD5
95aaf6ea2605e4595410c6ba74a34447
-
SHA1
94b44c819eec5c2852dbd0f3b8e3cdd0112077af
-
SHA256
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055
-
SHA512
9db74d36a2e0fb82d00888dab4f3a4e87ca59fdd849a7ba8db1db8627aee7b9905b4893279d3c7be29906aae821a62f19e0d956d15724435da225ca74077f721
-
SSDEEP
98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHLz:fv1GGE5gyjovK65E8oqjLz
Static task
static1
Behavioral task
behavioral1
Sample
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055.dll
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055.dll
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055
-
Size
4.2MB
-
MD5
95aaf6ea2605e4595410c6ba74a34447
-
SHA1
94b44c819eec5c2852dbd0f3b8e3cdd0112077af
-
SHA256
dda1ba12f768f4bc82f0295e13c42669a70ee19d41befe73a2301dc390ac0055
-
SHA512
9db74d36a2e0fb82d00888dab4f3a4e87ca59fdd849a7ba8db1db8627aee7b9905b4893279d3c7be29906aae821a62f19e0d956d15724435da225ca74077f721
-
SSDEEP
98304:fBHB2pne7a1mN1E8lkcf5YjovKqGYiOE8oLj5jIrHLz:fv1GGE5gyjovK65E8oqjLz
Score8/10-
Blocklisted process makes network request
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-