deeef3f486d9b67d06983fd6de606f0ca8b9319e0358fc4112f17985feb4216e | Triage

Sharing

General

Target

NEAS.3c1a2287802d58377b67353dc0e53a50_JC.exe
Size

522KB
Sample

231102-qfth4scc71
MD5

3c1a2287802d58377b67353dc0e53a50
SHA1

d4b3c71ba13e761585843b29fffabb38a5472ecf
SHA256

deeef3f486d9b67d06983fd6de606f0ca8b9319e0358fc4112f17985feb4216e
SHA512

1d01686fc39711a2dfc6a7e768720eec792c53aab6164180becb80dca6715d774ce087c96d6aa1d9126e033dafa0b98a06099b350ca64c12a2cb20e8901a6c9e
SSDEEP

12288:fexGI9+L0p1cjUsxR0S8fVgYeWIUVKRrBHpx3K+gdCgVHsz9LBSa:fe90Lue4sUS8fVYW10Rrt3aVdCgVULB7

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  NEAS.3c1a2287802d58377b67353dc0e53a50_JC.exe
- Size
  
  522KB
- MD5
  
  3c1a2287802d58377b67353dc0e53a50
- SHA1
  
  d4b3c71ba13e761585843b29fffabb38a5472ecf
- SHA256
  
  deeef3f486d9b67d06983fd6de606f0ca8b9319e0358fc4112f17985feb4216e
- SHA512
  
  1d01686fc39711a2dfc6a7e768720eec792c53aab6164180becb80dca6715d774ce087c96d6aa1d9126e033dafa0b98a06099b350ca64c12a2cb20e8901a6c9e
- SSDEEP
  
  12288:fexGI9+L0p1cjUsxR0S8fVgYeWIUVKRrBHpx3K+gdCgVHsz9LBSa:fe90Lue4sUS8fVYW10Rrt3aVdCgVULB7
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence