32092f81c4ab3cd800c4159e1972dc024da4f6c20c456ef98f9bb8650bba0637 | Triage

Sharing

General

Target

32092f81c4ab3cd800c4159e1972dc024da4f6c20c456ef98f9bb8650bba0637
Size

1.8MB
Sample

230330-ez6r1aah84
MD5

1da3988e617cd2251499e0fc7880bc2d
SHA1

7f39ce8cf7239ad0da7918780b15eef05c8e3682
SHA256

32092f81c4ab3cd800c4159e1972dc024da4f6c20c456ef98f9bb8650bba0637
SHA512

359e94aac8d8150951bed9442e8af402bc825e7bd63739e64dd3079c33d4096e5a48ce14d082930813799ebda709d1348727ffe1013d4578167186ede0abac40
SSDEEP

49152:E5lfUp//whl+VOmUYunzKSgLZgPpZt4Omi1:E5lfU5/wOVxUY6SgLt4hi1

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  32092f81c4ab3cd800c4159e1972dc024da4f6c20c456ef98f9bb8650bba0637
- Size
  
  1.8MB
- MD5
  
  1da3988e617cd2251499e0fc7880bc2d
- SHA1
  
  7f39ce8cf7239ad0da7918780b15eef05c8e3682
- SHA256
  
  32092f81c4ab3cd800c4159e1972dc024da4f6c20c456ef98f9bb8650bba0637
- SHA512
  
  359e94aac8d8150951bed9442e8af402bc825e7bd63739e64dd3079c33d4096e5a48ce14d082930813799ebda709d1348727ffe1013d4578167186ede0abac40
- SSDEEP
  
  49152:E5lfUp//whl+VOmUYunzKSgLZgPpZt4Omi1:E5lfU5/wOVxUY6SgLt4hi1
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence