66e164f2a4ea3b37586ceb2d699aa89e8a9475e9cd25c51476fd0a7d307df76a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66e164f2a4ea3b37586ceb2d699aa89e8a9475e9cd25c51476fd0a7d307df76a
Size

550KB
Sample

231116-fezzdsgh31
MD5

7c4fbc51802a403d2ada66e612242f1a
SHA1

18494553379a0d75137e33a94ba1d094547bf4a8
SHA256

66e164f2a4ea3b37586ceb2d699aa89e8a9475e9cd25c51476fd0a7d307df76a
SHA512

32ee777d6f0036f441f13bb157c20a89d70cddaa2fd84e6d515ea899ffeb75dc229def01e7f862c58697e35b85c741c5e6d2706379578682788b159f6208c42a
SSDEEP

12288:JerdkDtFFlpgSzMKP+SCJomR5pdbTGxqz:BtF3pg8wsmRdbT2

Score

10^/10

bootkit persistence

Malware Config

Targets

- Target
  
  66e164f2a4ea3b37586ceb2d699aa89e8a9475e9cd25c51476fd0a7d307df76a
- Size
  
  550KB
- MD5
  
  7c4fbc51802a403d2ada66e612242f1a
- SHA1
  
  18494553379a0d75137e33a94ba1d094547bf4a8
- SHA256
  
  66e164f2a4ea3b37586ceb2d699aa89e8a9475e9cd25c51476fd0a7d307df76a
- SHA512
  
  32ee777d6f0036f441f13bb157c20a89d70cddaa2fd84e6d515ea899ffeb75dc229def01e7f862c58697e35b85c741c5e6d2706379578682788b159f6208c42a
- SSDEEP
  
  12288:JerdkDtFFlpgSzMKP+SCJomR5pdbTGxqz:BtF3pg8wsmRdbT2
Score

10^/10

bootkit persistence
- Pitou
  Pitou.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence