2d29c706b447f514f53fc7d4894cd534eb5e33483d22633da1b176946a32da33 | Triage

Sharing

General

Target

uninst.exe
Size

4.3MB
Sample

231010-jecewabh5z
MD5

864e2bf430a7b5c15a40fc43f06d612e
SHA1

1e74e009ec5a63d91f2a354fa051d772755b4f51
SHA256

2d29c706b447f514f53fc7d4894cd534eb5e33483d22633da1b176946a32da33
SHA512

141c1b0a8beb5b5be5320fb935a39220f9cc02189ba922eda6a6ee835617b8e433a3aa0ebdb4afc3b7d59a71e18c23a43a6365e05feb5ff728650f54a79b284e
SSDEEP

98304:zqwQ/FTi8zgGKZyyJPy6gxMiODCnFSKnM21uh5H:ziVixbZyyJa53ODYFRb1uh

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  uninst.exe
- Size
  
  4.3MB
- MD5
  
  864e2bf430a7b5c15a40fc43f06d612e
- SHA1
  
  1e74e009ec5a63d91f2a354fa051d772755b4f51
- SHA256
  
  2d29c706b447f514f53fc7d4894cd534eb5e33483d22633da1b176946a32da33
- SHA512
  
  141c1b0a8beb5b5be5320fb935a39220f9cc02189ba922eda6a6ee835617b8e433a3aa0ebdb4afc3b7d59a71e18c23a43a6365e05feb5ff728650f54a79b284e
- SSDEEP
  
  98304:zqwQ/FTi8zgGKZyyJPy6gxMiODCnFSKnM21uh5H:ziVixbZyyJa53ODYFRb1uh
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence