1d7889629badf0a3cae04ac37f641b2aed77c0e55bd3af61b27414bd1c926bd0 | Triage

Sharing

General

Target

NEAS.1c21216eb671e186f1d9a9b04abc0770_JC.exe
Size

1.1MB
Sample

231016-tlnftsca24
MD5

1c21216eb671e186f1d9a9b04abc0770
SHA1

d4d1bdf596ac18a35e3a165191026ecb2a9bc4cc
SHA256

1d7889629badf0a3cae04ac37f641b2aed77c0e55bd3af61b27414bd1c926bd0
SHA512

92f6dae11b167e50bf34650f2bb625a8ba0d1af04b0a88407fd4701575e27c93c928556458ca9b08bd58120a04f95fec0461ace8511740355a29022314a0f754
SSDEEP

24576:NQlNW4tOLljveQbKBzQ4uUfugITayEGeB:NQloLxKFQGB

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  NEAS.1c21216eb671e186f1d9a9b04abc0770_JC.exe
- Size
  
  1.1MB
- MD5
  
  1c21216eb671e186f1d9a9b04abc0770
- SHA1
  
  d4d1bdf596ac18a35e3a165191026ecb2a9bc4cc
- SHA256
  
  1d7889629badf0a3cae04ac37f641b2aed77c0e55bd3af61b27414bd1c926bd0
- SHA512
  
  92f6dae11b167e50bf34650f2bb625a8ba0d1af04b0a88407fd4701575e27c93c928556458ca9b08bd58120a04f95fec0461ace8511740355a29022314a0f754
- SSDEEP
  
  24576:NQlNW4tOLljveQbKBzQ4uUfugITayEGeB:NQloLxKFQGB
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence