Overview

overview

7

Static

static

3

a52d95703d...59.exe

windows7-x64

7

a52d95703d...59.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a52d95703da6faa23a0e7bd70c22833a786deff7d4be3c272acdd3a025d12159

  • Size

    3.9MB

  • Sample

    231015-graqpseh83

  • MD5

    3e8485efea2c799c991af112c4ed65ff

  • SHA1

    4fb90a4610582178563cd48b5916bfb423b8e67e

  • SHA256

    a52d95703da6faa23a0e7bd70c22833a786deff7d4be3c272acdd3a025d12159

  • SHA512

    4a809ba13e41664785f5085ef3d5b2ccb2a59bcae1b5fb5b6ee4e6e59f8319c25428bf42277c990affc37c48ebb056ed7d692b2246d276f9fb22ba0d93608b6b

  • SSDEEP

    49152:kxLySRl7Gj+zPi9jkpqyo+gyfaSxMuS3Op09B/pwrGy9c6GFVfBqnWjUyMCHmjQf:OLySRnrg4oQfauBIPGrx2ZEyMomppW

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      a52d95703da6faa23a0e7bd70c22833a786deff7d4be3c272acdd3a025d12159

    • Size

      3.9MB

    • MD5

      3e8485efea2c799c991af112c4ed65ff

    • SHA1

      4fb90a4610582178563cd48b5916bfb423b8e67e

    • SHA256

      a52d95703da6faa23a0e7bd70c22833a786deff7d4be3c272acdd3a025d12159

    • SHA512

      4a809ba13e41664785f5085ef3d5b2ccb2a59bcae1b5fb5b6ee4e6e59f8319c25428bf42277c990affc37c48ebb056ed7d692b2246d276f9fb22ba0d93608b6b

    • SSDEEP

      49152:kxLySRl7Gj+zPi9jkpqyo+gyfaSxMuS3Op09B/pwrGy9c6GFVfBqnWjUyMCHmjQf:OLySRnrg4oQfauBIPGrx2ZEyMomppW

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks