060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be | Triage

Submit
Reports

Overview

overview

7

Static

static

7

060d0d9d4f...be.exe

windows7-x64

7

060d0d9d4f...be.exe

windows10-2004-x64

7

Sharing

General

Target

060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be
Size

9.2MB
Sample

231007-j5m93acc72
MD5

5f60fa0ccabe5c4ab07e9917c6fe47f5
SHA1

5eea37ed04a96757d5bad1dff6ce57131de14ab0
SHA256

060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be
SHA512

f7e113c17b176b12485531e393d01e3cc1020e3548c6d2629f4e2569d3c9d1e4fdeab4c3fd090243411ec570e696ba62a18bfda4d9ea80ac92d9b9c476d14648
SSDEEP

196608:ONHj8Ccq+SAsPes9KNW6fh99lFZD0E1OZFvTUsRQTOCMm:ENcPZC6fZlz1avTRQTEm

Score

7^/10

bootkit persistence vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be.exe

Resource

win7-20230831-en

bootkit persistence vmprotect

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be.exe

Resource

win10v2004-20230915-en

bootkit persistence vmprotect

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be
- Size
  
  9.2MB
- MD5
  
  5f60fa0ccabe5c4ab07e9917c6fe47f5
- SHA1
  
  5eea37ed04a96757d5bad1dff6ce57131de14ab0
- SHA256
  
  060d0d9d4fd97542337fe2d686d98068a50ca6190b097fedfecb2b29ef3175be
- SHA512
  
  f7e113c17b176b12485531e393d01e3cc1020e3548c6d2629f4e2569d3c9d1e4fdeab4c3fd090243411ec570e696ba62a18bfda4d9ea80ac92d9b9c476d14648
- SSDEEP
  
  196608:ONHj8Ccq+SAsPes9KNW6fh99lFZD0E1OZFvTUsRQTOCMm:ENcPZC6fZlz1avTRQTEm
Score

7^/10

bootkit persistence vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistencevmprotect

behavioral2

bootkitpersistencevmprotect

© 2018-2025

Terms | Privacy