b538d5a54eeceb832bd5d3024623e87ee89e3d133bafb6f8ca95a9bc9f1d82f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b538d5a54eeceb832bd5d3024623e87ee89e3d133bafb6f8ca95a9bc9f1d82f2
Size

2.4MB
Sample

231012-2sgwmafg83
MD5

fa4656c63807d13fa3bb35f686652ff0
SHA1

79ae3b4498f913dbaadff498fd552b4011339e2a
SHA256

b538d5a54eeceb832bd5d3024623e87ee89e3d133bafb6f8ca95a9bc9f1d82f2
SHA512

04521e2f18d98d418e0ff01200eaa2c84067c6ad976c8beb60150a8f4fcbe4a430e23844fbd58be74f4d18369c5ff355de737a74248fdfd4b081b5b89f901c8c
SSDEEP

24576:vFnGkINu8auhjmfv2di/GulD1PAoXGj3K6I4i6zGRMx0H9I7+R7+RENPHdO8ub/3:FrfWje2diRAOHcfSgyXkuSMPirh67S

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b538d5a54eeceb832bd5d3024623e87ee89e3d133bafb6f8ca95a9bc9f1d82f2
- Size
  
  2.4MB
- MD5
  
  fa4656c63807d13fa3bb35f686652ff0
- SHA1
  
  79ae3b4498f913dbaadff498fd552b4011339e2a
- SHA256
  
  b538d5a54eeceb832bd5d3024623e87ee89e3d133bafb6f8ca95a9bc9f1d82f2
- SHA512
  
  04521e2f18d98d418e0ff01200eaa2c84067c6ad976c8beb60150a8f4fcbe4a430e23844fbd58be74f4d18369c5ff355de737a74248fdfd4b081b5b89f901c8c
- SSDEEP
  
  24576:vFnGkINu8auhjmfv2di/GulD1PAoXGj3K6I4i6zGRMx0H9I7+R7+RENPHdO8ub/3:FrfWje2diRAOHcfSgyXkuSMPirh67S
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence