f59d0aae0b3e672167f7b83cdcce19ca772ab2456413b06c9398e830c440ee10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f59d0aae0b3e672167f7b83cdcce19ca772ab2456413b06c9398e830c440ee10
Size

4.1MB
Sample

230616-g3j4hsdc52
MD5

f168b280c7abb068a571c0a1e70360c9
SHA1

011497dcf94c5d82aaef76b29fb963ab2a4be7c9
SHA256

f59d0aae0b3e672167f7b83cdcce19ca772ab2456413b06c9398e830c440ee10
SHA512

a50f1648bc0f029a02d4df470df05fb43eec044879acc00a2d40e41e822acd6dd1e0a5b97e3df9a1e4b2780899b9fef3faabea742b4659cf84de567c46fd55f1
SSDEEP

98304:E5lfU5/w4VxUYOEiRYNbGdCqou+fBXzRZlCt9SmNt:E5GXx+PYGOu+JDRDIwu

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  f59d0aae0b3e672167f7b83cdcce19ca772ab2456413b06c9398e830c440ee10
- Size
  
  4.1MB
- MD5
  
  f168b280c7abb068a571c0a1e70360c9
- SHA1
  
  011497dcf94c5d82aaef76b29fb963ab2a4be7c9
- SHA256
  
  f59d0aae0b3e672167f7b83cdcce19ca772ab2456413b06c9398e830c440ee10
- SHA512
  
  a50f1648bc0f029a02d4df470df05fb43eec044879acc00a2d40e41e822acd6dd1e0a5b97e3df9a1e4b2780899b9fef3faabea742b4659cf84de567c46fd55f1
- SSDEEP
  
  98304:E5lfU5/w4VxUYOEiRYNbGdCqou+fBXzRZlCt9SmNt:E5GXx+PYGOu+JDRDIwu
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence