Overview

overview

7

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

7

Resubmissions

15/05/2023, 13:53

230515-q6ykraea91 7

15/05/2023, 13:52

230515-q6g8rsff87 1

15/05/2023, 13:49

230515-q42vdsea81 6

Sharing

Copy URL Twitter E-mail

General

  • Target

    sample

  • Size

    16KB

  • Sample

    230515-q6ykraea91

  • MD5

    8a63e04df2cd6bd9792a9524586b3e4e

  • SHA1

    784ada903b3adde8816dd77d0740f6457ac0f7b8

  • SHA256

    07f978162b8ce41b67036584aab26e303d72dfc9c9491985e1fa67faa6475920

  • SHA512

    9b5a7f0ff5764ecb8952fb579f92aceca54cf610a9348e5622aa95cdcf2ba5b8623b07fcbf884c9db46068f17a0316531142b1254de6b17841c4dc37c44d1ba9

  • SSDEEP

    384:rEFL7aCDpmRgVoOsKuElKeGMzU8HhhbMRx7328B2WBJCBXQL:rYXaCfVoOsKRI1MLBhbQBHDJQQL

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      sample

    • Size

      16KB

    • MD5

      8a63e04df2cd6bd9792a9524586b3e4e

    • SHA1

      784ada903b3adde8816dd77d0740f6457ac0f7b8

    • SHA256

      07f978162b8ce41b67036584aab26e303d72dfc9c9491985e1fa67faa6475920

    • SHA512

      9b5a7f0ff5764ecb8952fb579f92aceca54cf610a9348e5622aa95cdcf2ba5b8623b07fcbf884c9db46068f17a0316531142b1254de6b17841c4dc37c44d1ba9

    • SSDEEP

      384:rEFL7aCDpmRgVoOsKuElKeGMzU8HhhbMRx7328B2WBJCBXQL:rYXaCfVoOsKRI1MLBhbQBHDJQQL

    Score
    7/10
    bootkitpersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Drops Chrome extension

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks