d246bf0882855ad55ccec52f927637e79456b81de99d3a3aa162944592c65c6a | Triage

Sharing

General

Target

d246bf0882855ad55ccec52f927637e79456b81de99d3a3aa162944592c65c6a
Size

4.8MB
Sample

230509-jttygagg7v
MD5

14de2ba1cf32f47e8b687aa0618510f5
SHA1

d7c1103fb6f5946107ebb641aa7c366e70df6028
SHA256

d246bf0882855ad55ccec52f927637e79456b81de99d3a3aa162944592c65c6a
SHA512

be9ba691f87e370908413f0256e98e38249f03abfb1f58c30e49d6bde0958e305a7fdc8d6262967d241200b5e6016888e6511aef7784eebdcb702d4750dacd7a
SSDEEP

98304:TB+7xb6X81owOcMH09z03tJuT5p/fSNnAo4leOm899Tp+QQwm3VVF:l0OXBcM4I3KXSJA1eOm8lQwqV

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  d246bf0882855ad55ccec52f927637e79456b81de99d3a3aa162944592c65c6a
- Size
  
  4.8MB
- MD5
  
  14de2ba1cf32f47e8b687aa0618510f5
- SHA1
  
  d7c1103fb6f5946107ebb641aa7c366e70df6028
- SHA256
  
  d246bf0882855ad55ccec52f927637e79456b81de99d3a3aa162944592c65c6a
- SHA512
  
  be9ba691f87e370908413f0256e98e38249f03abfb1f58c30e49d6bde0958e305a7fdc8d6262967d241200b5e6016888e6511aef7784eebdcb702d4750dacd7a
- SSDEEP
  
  98304:TB+7xb6X81owOcMH09z03tJuT5p/fSNnAo4leOm899Tp+QQwm3VVF:l0OXBcM4I3KXSJA1eOm8lQwqV
Score

7^/10

bootkit persistence
- Executes dropped EXE
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence