439adc5d418679b20dca64158189fe0e1d63f85c86c3fa1b91c469233663e41b | Triage

Resubmissions

01-04-2023 00:44

230401-a3jpeseg74 1

01-04-2023 00:40

230401-a1hpcaga91 6

Sharing

General

Target

launcher.zip
Size

6.9MB
Sample

230401-a1hpcaga91
MD5

f8c3e441682dd068fe82ce088a650895
SHA1

1430ea2cba772d04aa6abd651283029dec888334
SHA256

439adc5d418679b20dca64158189fe0e1d63f85c86c3fa1b91c469233663e41b
SHA512

ff4fa8169a40efc21e5b09e7f864f3148d4f4f5ef9576f56fcdb5f3b82aa9fa8ac66880cb71294bc714bf052682c2c5a02a00af70a6d7447bab1e059a1e158c2
SSDEEP

196608:Y7Fp+XQulTLISaeEE+PSoJAfy3NyuHlc+t+98EWktM4DuHI3d:Y7H+fm4ERPLVUGV+98EWKjt

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  CMLauncher.exe
- Size
  
  14.7MB
- MD5
  
  bb3e00f34a96cce79549e72d1b1a439d
- SHA1
  
  11b57260f75f8ac1dfa39dea6098506830baf440
- SHA256
  
  463a3af1bd39ae2cd2e84286b377694a33fd740d9ed767e82569743ef184068e
- SHA512
  
  4fcf526b27ff9244c56b33bf66837f65e3a6245b3f4f4537b0d8ad81cf1a3415a5a952ba70f81cb00381dbfcef7d9792bfc47e8ee2138dfea3fb874b5d1840ae
- SSDEEP
  
  393216:JgukY3Ix2Rpa5W4WAot7j9P1pz3/ue5vy7vi2C1aE:TH38CAotn9P1pz3/ue5vlZ
Score

6^/10

bootkit persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2