26483abc7f3b2f5c33d9795587ea16ec8c3b28d3cffa4e314ab2be54f6d0a425 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26483abc7f3b2f5c33d9795587ea16ec8c3b28d3cffa4e314ab2be54f6d0a425
Size

5.2MB
Sample

231123-j5nktshe4s
MD5

d09887d744bff7777d2c845ec6e1e577
SHA1

bd3e064617b3e288cd6b95d3744a651f6e42409c
SHA256

26483abc7f3b2f5c33d9795587ea16ec8c3b28d3cffa4e314ab2be54f6d0a425
SHA512

48d0cfb7624a3c573f5f1d3a4f0001bacf8306d984fca641e5d749c25876931456b071c2303256b2a4d2cb91a777df6d0e30cdbf798e936945437fd7beed0590
SSDEEP

98304:QVHruMlntzn0k8YPG8hRiCu/CVUdVEy9qMBNP/qxct8qoZOMA44fj:UumnI4UdVEy9qMBNLt4ZOMA44

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  26483abc7f3b2f5c33d9795587ea16ec8c3b28d3cffa4e314ab2be54f6d0a425
- Size
  
  5.2MB
- MD5
  
  d09887d744bff7777d2c845ec6e1e577
- SHA1
  
  bd3e064617b3e288cd6b95d3744a651f6e42409c
- SHA256
  
  26483abc7f3b2f5c33d9795587ea16ec8c3b28d3cffa4e314ab2be54f6d0a425
- SHA512
  
  48d0cfb7624a3c573f5f1d3a4f0001bacf8306d984fca641e5d749c25876931456b071c2303256b2a4d2cb91a777df6d0e30cdbf798e936945437fd7beed0590
- SSDEEP
  
  98304:QVHruMlntzn0k8YPG8hRiCu/CVUdVEy9qMBNP/qxct8qoZOMA44fj:UumnI4UdVEy9qMBNLt4ZOMA44
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence