cde6da5cd15cf798553d78ee026dccac75fd05512b84bc495a0908d4fa7494c9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sogou.exe
Size

82.2MB
Sample

230614-kl8mbsfa62
MD5

73a0e33385b7fd3c2ce6279f35ef0c0b
SHA1

081f6f93fa38e137a66de35f1e26933b3a9835ed
SHA256

cde6da5cd15cf798553d78ee026dccac75fd05512b84bc495a0908d4fa7494c9
SHA512

b646f038d69e4efa4ac95b1c353675b6bb789522b9847810f7c83be610e98e52cd90a8cd88b0af2fe0e419e6ffb564220e9884a4522bfb24b5654293bb33b2d0
SSDEEP

1572864:xSOIxz2WOeL5ua0kgRkh2uoOdTn0Xp6O306mNIcPUaStr2eE/6/k6sE26:EOIrOKr82toMT0xEbEaSQej/kH0

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  sogou.exe
- Size
  
  82.2MB
- MD5
  
  73a0e33385b7fd3c2ce6279f35ef0c0b
- SHA1
  
  081f6f93fa38e137a66de35f1e26933b3a9835ed
- SHA256
  
  cde6da5cd15cf798553d78ee026dccac75fd05512b84bc495a0908d4fa7494c9
- SHA512
  
  b646f038d69e4efa4ac95b1c353675b6bb789522b9847810f7c83be610e98e52cd90a8cd88b0af2fe0e419e6ffb564220e9884a4522bfb24b5654293bb33b2d0
- SSDEEP
  
  1572864:xSOIxz2WOeL5ua0kgRkh2uoOdTn0Xp6O306mNIcPUaStr2eE/6/k6sE26:EOIrOKr82toMT0xEbEaSQej/kH0
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence