832dbe939ca03bc4aa1c6e45d97db87871a0384b019b7cc0ca1f15492a83a9a6 | Triage

Resubmissions

28-05-2023 16:42

230528-t734eaga7y 7

28-05-2023 16:13

230528-tpb7zafe68 8

Sharing

General

Target

DFStd.exe
Size

6.0MB
Sample

230528-t734eaga7y
MD5

b8fc2d496516ee62893881f7cd6b3519
SHA1

221287ce79173679639d95722239ee449607cca1
SHA256

832dbe939ca03bc4aa1c6e45d97db87871a0384b019b7cc0ca1f15492a83a9a6
SHA512

12f7d501b409549c0e8ec6e38e14dac42ecc6ee9a83052ec5a3d85d1c02d5a5caba04135ae6a11987c494a924043375aee7c0b593e30cfb2ea147d98db9cc9f8
SSDEEP

98304:kekrWAjN7r3ylrlOJr3ylrlODUaQWt15I/QLKENqP:KrWiN7rtrsahttLXNqP

Score

7^/10

aspackv2 bootkit persistence

Malware Config

Targets

- Target
  
  DFStd.exe
- Size
  
  6.0MB
- MD5
  
  b8fc2d496516ee62893881f7cd6b3519
- SHA1
  
  221287ce79173679639d95722239ee449607cca1
- SHA256
  
  832dbe939ca03bc4aa1c6e45d97db87871a0384b019b7cc0ca1f15492a83a9a6
- SHA512
  
  12f7d501b409549c0e8ec6e38e14dac42ecc6ee9a83052ec5a3d85d1c02d5a5caba04135ae6a11987c494a924043375aee7c0b593e30cfb2ea147d98db9cc9f8
- SSDEEP
  
  98304:kekrWAjN7r3ylrlOJr3ylrlODUaQWt15I/QLKENqP:KrWiN7rtrsahttLXNqP
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence

behavioral3

bootkitpersistence