4b84ae0db3971dc85c0d3ad2b47562b4ef033f5a6419c71a449927aa92e2d8c3 | Triage

Sharing

General

Target

4b84ae0db3971dc85c0d3ad2b47562b4ef033f5a6419c71a449927aa92e2d8c3
Size

2.0MB
Sample

230614-dwlrzscg87
MD5

94c62915893b5a44e1ff7450d9faf954
SHA1

137fe5a2df69535bad5a8cb9b4b4bce7cb532e4c
SHA256

4b84ae0db3971dc85c0d3ad2b47562b4ef033f5a6419c71a449927aa92e2d8c3
SHA512

f2a25fa23aa0ad2e2b4f6c69aa663d78f67d244477491cffd190445c8bca8c00f0c284d7fae8e638de5640c3d5d0a8c8742a415152772732a13bd6ae43311157
SSDEEP

49152:aJKwLzOqDFMMovvYmEQtOel0zCdsf9TXau:aIqDnysCvu

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  4b84ae0db3971dc85c0d3ad2b47562b4ef033f5a6419c71a449927aa92e2d8c3
- Size
  
  2.0MB
- MD5
  
  94c62915893b5a44e1ff7450d9faf954
- SHA1
  
  137fe5a2df69535bad5a8cb9b4b4bce7cb532e4c
- SHA256
  
  4b84ae0db3971dc85c0d3ad2b47562b4ef033f5a6419c71a449927aa92e2d8c3
- SHA512
  
  f2a25fa23aa0ad2e2b4f6c69aa663d78f67d244477491cffd190445c8bca8c00f0c284d7fae8e638de5640c3d5d0a8c8742a415152772732a13bd6ae43311157
- SSDEEP
  
  49152:aJKwLzOqDFMMovvYmEQtOel0zCdsf9TXau:aIqDnysCvu
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2