Overview

overview

6

Static

static

1

5c2b41621f...ad.exe

windows7-x64

6

5c2b41621f...ad.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c2b41621fb9e7bc1bbfe8b0b8a49794d8a0f15b6fd8bed67a8497bf2eb47ead

  • Size

    16.8MB

  • Sample

    230405-qrvwbafa25

  • MD5

    9563188dded3de6264fceb4d210116c8

  • SHA1

    6b83993de84b3afe789c4b9ba31fd84d4dbae956

  • SHA256

    5c2b41621fb9e7bc1bbfe8b0b8a49794d8a0f15b6fd8bed67a8497bf2eb47ead

  • SHA512

    f557bafc0f0fa2d23509d00a7e76d44c07ec66a6e2a63bccfaf8d6e71c7a4bfaaa42f1cc27858fe499fd740314efdd79eed0642a932e30ef36c33efe233cc8fa

  • SSDEEP

    393216:/5PFiP0FQRjLlpeF+JF4MR7J4QhLSqP0n:RIdlpe0jJbSqPU

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      5c2b41621fb9e7bc1bbfe8b0b8a49794d8a0f15b6fd8bed67a8497bf2eb47ead

    • Size

      16.8MB

    • MD5

      9563188dded3de6264fceb4d210116c8

    • SHA1

      6b83993de84b3afe789c4b9ba31fd84d4dbae956

    • SHA256

      5c2b41621fb9e7bc1bbfe8b0b8a49794d8a0f15b6fd8bed67a8497bf2eb47ead

    • SHA512

      f557bafc0f0fa2d23509d00a7e76d44c07ec66a6e2a63bccfaf8d6e71c7a4bfaaa42f1cc27858fe499fd740314efdd79eed0642a932e30ef36c33efe233cc8fa

    • SSDEEP

      393216:/5PFiP0FQRjLlpeF+JF4MR7J4QhLSqP0n:RIdlpe0jJbSqPU

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

1
T1067

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks