Overview

overview

7

Static

static

7

fd29b2066d...3a.exe

windows7-x64

7

fd29b2066d...3a.exe

windows10-2004-x64

7

Resubmissions

26/08/2023, 11:11

230826-m9966sbe8s 7

25/08/2023, 23:24

230825-3d1kvsfe29 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd29b2066d4a9136fa3cbc82c11d96cc5f8c961810adc775955c058be9ed833a

  • Size

    1.6MB

  • Sample

    230825-3d1kvsfe29

  • MD5

    c89060c1dacdc7ac083790a83f942df2

  • SHA1

    208427449ac7efb0e206e319013475f2d49f84c4

  • SHA256

    fd29b2066d4a9136fa3cbc82c11d96cc5f8c961810adc775955c058be9ed833a

  • SHA512

    6817b369cd452376e569741616201c76d78d476abaeafee6c65bf6120acc0e490f0c71c12c13078193aa0158c296b1130547f95ad5bd92e3f96960be251e291d

  • SSDEEP

    49152:nRABFihrGf7csuRaMln/JtjpJcnfYVU1S3G0:RWFihrkoa0nxttJUfyU1S3J

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      fd29b2066d4a9136fa3cbc82c11d96cc5f8c961810adc775955c058be9ed833a

    • Size

      1.6MB

    • MD5

      c89060c1dacdc7ac083790a83f942df2

    • SHA1

      208427449ac7efb0e206e319013475f2d49f84c4

    • SHA256

      fd29b2066d4a9136fa3cbc82c11d96cc5f8c961810adc775955c058be9ed833a

    • SHA512

      6817b369cd452376e569741616201c76d78d476abaeafee6c65bf6120acc0e490f0c71c12c13078193aa0158c296b1130547f95ad5bd92e3f96960be251e291d

    • SSDEEP

      49152:nRABFihrGf7csuRaMln/JtjpJcnfYVU1S3G0:RWFihrkoa0nxttJUfyU1S3J

    Score
    7/10
    bootkitpersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks