General
-
Target
455eb5ef37e20ccda342b1c20a8c1013.bin
-
Size
2.8MB
-
Sample
231125-bzwegsff66
-
MD5
ba85c6e3d9f43b1f3d06cf47888d2cbc
-
SHA1
6345a37ee675d2aec31268f0a8a5d3ddb3ce93f3
-
SHA256
985f5ee2b4dea4bfc507743cb153f6af0604dc4a05e0b67b5b458295d78b7124
-
SHA512
90cd3f5ce0da6d057b36e07779a65ed7bc9a37a4f500c710fac3a61c243ffb28023e0e85ca1d05b40c8243e82eef60f4fce416aabd67ee145d9b5381954e5cf8
-
SSDEEP
49152:r1T/iEMdj/SWGw1iCfGwgqxwDGYLTzDIWQZyLMNeT6jyMljo3/:1rwDfGrqELHD6yQNjWMav
Malware Config
Targets
-
-
Target
9e487bdc6508f4f32214e3fa5e022a304b961af63e692c3d358da11083b1cacd.bin
-
Size
5.2MB
-
MD5
455eb5ef37e20ccda342b1c20a8c1013
-
SHA1
ed70c5cdb54a29a8d71d5f8c88c321aaef60e271
-
SHA256
9e487bdc6508f4f32214e3fa5e022a304b961af63e692c3d358da11083b1cacd
-
SHA512
d17daca41a4e303063443094ed4f820526c7a1d51f07c042da1a40ae0a44d4bc0d28021ba2b32a7e5ea7b30869e3e412610130b6ca108e491d3d37a98f1af2f4
-
SSDEEP
98304:VYCjhUpyGHZFZgoGAEh3YsbLGzkY83nJfDUTPY37/M2uKj:VopyGHHyogxe7MJLUqMij
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-