b4533d48dedbb8bd30a79e21b4bea37222d704c3468bbd3e1b0ff513bca0a5f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4533d48dedbb8bd30a79e21b4bea37222d704c3468bbd3e1b0ff513bca0a5f5
Size

5.9MB
Sample

230611-ywyf1ahh93
MD5

e5777dd1c12775eedbbc413ae70414ac
SHA1

69e5a7cfabde4dad6b0d8cc0654e644de8657645
SHA256

b4533d48dedbb8bd30a79e21b4bea37222d704c3468bbd3e1b0ff513bca0a5f5
SHA512

126a80709e8c043b08909a7fc56fac80d8c4b37dd18f253594361dcc88d1f24c8ff531114dca45144fec53fe24a2f20c536c58f631e612baeb872e5db088fd75
SSDEEP

98304:CF3wCi9lXaYrya6XEqDUIhZUAkY8ZEhQNovhKexz6cvP2WjQWH0FBZbOEuK6KC3S:CvZfjUI8Povh7660FzKEKQ2ScNPglvOs

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b4533d48dedbb8bd30a79e21b4bea37222d704c3468bbd3e1b0ff513bca0a5f5
- Size
  
  5.9MB
- MD5
  
  e5777dd1c12775eedbbc413ae70414ac
- SHA1
  
  69e5a7cfabde4dad6b0d8cc0654e644de8657645
- SHA256
  
  b4533d48dedbb8bd30a79e21b4bea37222d704c3468bbd3e1b0ff513bca0a5f5
- SHA512
  
  126a80709e8c043b08909a7fc56fac80d8c4b37dd18f253594361dcc88d1f24c8ff531114dca45144fec53fe24a2f20c536c58f631e612baeb872e5db088fd75
- SSDEEP
  
  98304:CF3wCi9lXaYrya6XEqDUIhZUAkY8ZEhQNovhKexz6cvP2WjQWH0FBZbOEuK6KC3S:CvZfjUI8Povh7660FzKEKQ2ScNPglvOs
Score

7^/10

bootkit persistence
- Executes dropped EXE
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence