Analysis

  • max time kernel
    140s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2023, 12:28

General

  • Target

    73e64006613ff7921de7d094f21ce460e1bee70c88a9dc586415650d844ff7e5.exe

  • Size

    15.2MB

  • MD5

    01895e0fdc8acec2f23831e285d86376

  • SHA1

    bfca55c592a1109165213970e1b132910fbc4c6c

  • SHA256

    73e64006613ff7921de7d094f21ce460e1bee70c88a9dc586415650d844ff7e5

  • SHA512

    552f9c80e17af2bd740592ec9ec66d0a77a81c066c250b89847cb4c6807418ceca005a9170317dcdd470e519ff677e9302dd2d13c6761461276599ce7f39b04e

  • SSDEEP

    393216:NXb9+pf2vOF1b6zBxvQQKHVR8/IhVLqrUhWdKXhUHZiXxy2ss5:NXb90WQ6CV+/Ih5qrjKMiXxv

Score
6/10

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

Processes

  • C:\Users\Admin\AppData\Local\Temp\73e64006613ff7921de7d094f21ce460e1bee70c88a9dc586415650d844ff7e5.exe
    "C:\Users\Admin\AppData\Local\Temp\73e64006613ff7921de7d094f21ce460e1bee70c88a9dc586415650d844ff7e5.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    PID:2440

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2440-0-0x00000000002F0000-0x00000000002F1000-memory.dmp

          Filesize

          4KB

        • memory/2440-1-0x00000000002F0000-0x00000000002F1000-memory.dmp

          Filesize

          4KB