Overview

overview

6

Static

static

1

V_razrabot...orrent

windows10-2004-x64

6

Resubmissions

14/04/2023, 15:47

230414-s8l1vaad97 7

14/04/2023, 15:12

230414-slb75abh5z 3

14/04/2023, 15:06

230414-sgrr1sbh4v 6

14/04/2023, 15:00

230414-sdnaesac65 3

14/04/2023, 14:50

230414-r7251abg71 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    V_razrabotke_Project_Zomboid_L__RUS__ENG__12__2013__41_78_16__GOG__rutracker-6252487_torrent.torrent

  • Size

    52KB

  • Sample

    230414-sgrr1sbh4v

  • MD5

    dd9df8f1ee8bc133bf24ede430848330

  • SHA1

    ce3363cdb6aff738a5568de11958ce0e67195ff3

  • SHA256

    0ac4c7288b461e90cdbd0aaf7ff2af36dd70f77fb553c2318869cb129c5ac472

  • SHA512

    44a8a73da9c258fa49a9f75e9eeb901007ed529bc422426ed4d5e10d1fb116474900e64f100a777d48c31213ff5cb54180c6597b89461af79faf6cedc717d047

  • SSDEEP

    768:3xP5F+Fvt11H1KCRXriQQUONxdWNRVcRgvOhTAOw5+FnYiPSusxNVLpxT4fFIH8Q:3xEt17pXrlEqV6dF4yYiivVgfFTrtu

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      V_razrabotke_Project_Zomboid_L__RUS__ENG__12__2013__41_78_16__GOG__rutracker-6252487_torrent.torrent

    • Size

      52KB

    • MD5

      dd9df8f1ee8bc133bf24ede430848330

    • SHA1

      ce3363cdb6aff738a5568de11958ce0e67195ff3

    • SHA256

      0ac4c7288b461e90cdbd0aaf7ff2af36dd70f77fb553c2318869cb129c5ac472

    • SHA512

      44a8a73da9c258fa49a9f75e9eeb901007ed529bc422426ed4d5e10d1fb116474900e64f100a777d48c31213ff5cb54180c6597b89461af79faf6cedc717d047

    • SSDEEP

      768:3xP5F+Fvt11H1KCRXriQQUONxdWNRVcRgvOhTAOw5+FnYiPSusxNVLpxT4fFIH8Q:3xEt17pXrlEqV6dF4yYiivVgfFTrtu

    Score
    6/10
    bootkitpersistence

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks