Overview

overview

7

Static

static

1

tmp.exe

windows7-x64

7

tmp.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp

  • Size

    4.1MB

  • Sample

    230415-1hv5tsfg88

  • MD5

    c900dc52034c388178f997ff7533ca23

  • SHA1

    94d518eaa41c6f35280b3df1c895da22039418b8

  • SHA256

    2613a91f3eacd28df2601edab49a4f1731af4fb721f7f6bb2907c5cb3c1c36c0

  • SHA512

    80697464976c164225a96e16ce227c58b3c1689c89ad4493c42bf7ed720508d1e44c1db7ad557132772f612def1f7e6ab88468f8f4bd19a22ef611d46756ecf6

  • SSDEEP

    98304:RcNxERmct4991JfL6OyRbVK0+Gw5sPkaHD:RcNxLz91J2bVK0+Gw5s8a

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      tmp

    • Size

      4.1MB

    • MD5

      c900dc52034c388178f997ff7533ca23

    • SHA1

      94d518eaa41c6f35280b3df1c895da22039418b8

    • SHA256

      2613a91f3eacd28df2601edab49a4f1731af4fb721f7f6bb2907c5cb3c1c36c0

    • SHA512

      80697464976c164225a96e16ce227c58b3c1689c89ad4493c42bf7ed720508d1e44c1db7ad557132772f612def1f7e6ab88468f8f4bd19a22ef611d46756ecf6

    • SSDEEP

      98304:RcNxERmct4991JfL6OyRbVK0+Gw5sPkaHD:RcNxLz91J2bVK0+Gw5s8a

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks