Overview

overview

9

Static

static

7

404a5a7f33...2d.exe

windows7-x64

9

404a5a7f33...2d.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    404a5a7f33ca14c254519f93619300eef93cb40dac1c25151d8d42ff67937c2d

  • Size

    1.8MB

  • Sample

    230828-d79m7ahb9x

  • MD5

    2fd6a60d4f5410a9e4908f5f562db882

  • SHA1

    e876f80ced73ba229d780d2987ce08bb1b7cb124

  • SHA256

    404a5a7f33ca14c254519f93619300eef93cb40dac1c25151d8d42ff67937c2d

  • SHA512

    4388a44bce9283d43118f46ddab44a64f2a415a62241e64000ef8af7d8260fdee2087287e7337e0aa61ae212468ecc532ab92ff014b24344bc5db280aaeda1e1

  • SSDEEP

    49152:TzrtqDsn95jHq3bvqEaPM2kGrydx9Uy6f4q6z:TzrgDG9ZHqrv+DmxIQqq

Score
9/10
bootkitoss_akpersistenceupx

Malware Config

Targets

    • Target

      404a5a7f33ca14c254519f93619300eef93cb40dac1c25151d8d42ff67937c2d

    • Size

      1.8MB

    • MD5

      2fd6a60d4f5410a9e4908f5f562db882

    • SHA1

      e876f80ced73ba229d780d2987ce08bb1b7cb124

    • SHA256

      404a5a7f33ca14c254519f93619300eef93cb40dac1c25151d8d42ff67937c2d

    • SHA512

      4388a44bce9283d43118f46ddab44a64f2a415a62241e64000ef8af7d8260fdee2087287e7337e0aa61ae212468ecc532ab92ff014b24344bc5db280aaeda1e1

    • SSDEEP

      49152:TzrtqDsn95jHq3bvqEaPM2kGrydx9Uy6f4q6z:TzrgDG9ZHqrv+DmxIQqq

    Score
    9/10
    bootkitoss_akpersistenceupx

    • detect oss ak

      oss ak information detected.

      oss_ak

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks