224c5418ec4975ee7fde262d249fe2a2966c69467015f9f64e8b3203e76e39e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

224c5418ec4975ee7fde262d249fe2a2966c69467015f9f64e8b3203e76e39e1
Size

3.8MB
Sample

230831-ba6txsbe3z
MD5

85cf50a9c92ded7ddb8a94d25b611de4
SHA1

2722da275cf2e81a8bdc472288f6cd4dc06e86dc
SHA256

224c5418ec4975ee7fde262d249fe2a2966c69467015f9f64e8b3203e76e39e1
SHA512

db25ee563d23d9a7a476c7f368f2c97454b8ab7bbf2ee3b2f87a7822b43899d37542aca4a84dea809e951d1de070b5f24f5e90c381e375022e669ae933242a87
SSDEEP

98304:6AejIUQM1NIhJ2wJyPGhMAUu6Ve0xxiZUN:Drw8r8AXl0xM2

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  224c5418ec4975ee7fde262d249fe2a2966c69467015f9f64e8b3203e76e39e1
- Size
  
  3.8MB
- MD5
  
  85cf50a9c92ded7ddb8a94d25b611de4
- SHA1
  
  2722da275cf2e81a8bdc472288f6cd4dc06e86dc
- SHA256
  
  224c5418ec4975ee7fde262d249fe2a2966c69467015f9f64e8b3203e76e39e1
- SHA512
  
  db25ee563d23d9a7a476c7f368f2c97454b8ab7bbf2ee3b2f87a7822b43899d37542aca4a84dea809e951d1de070b5f24f5e90c381e375022e669ae933242a87
- SSDEEP
  
  98304:6AejIUQM1NIhJ2wJyPGhMAUu6Ve0xxiZUN:Drw8r8AXl0xM2
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence