9e49f298d49c4f9ae11fc9a4fd2cccfeb128f63651fe5b413ce02ae43959d151 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tin.zip
Size

305KB
Sample

231126-1yta6sce7t
MD5

6997547bbe1d1f50fa94f90766c37ab1
SHA1

7379d3aff9c3f1f6e9ba6369e85679fedc61adc9
SHA256

9e49f298d49c4f9ae11fc9a4fd2cccfeb128f63651fe5b413ce02ae43959d151
SHA512

26f8415077dbf56ddea8f44194608f948b279d726ed88a607164d7030cbb18f76e1208b7197b7e99d7c59044fed4ae0b49cb34ee0b47a5669aaf3e22547dacef
SSDEEP

6144:xHbeIHZTRCy28KfAWENBXT7ua3R8OgWIqbrY+4UQKnzHsno4:tCI5ljOAWENR7AWZbrv4UpzHsno4

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  tin.exe
- Size
  
  439KB
- MD5
  
  b3edc0708fb191e2d3016c68585ed31e
- SHA1
  
  ab1ce0cb2a819b82206dc1e922e97b284b585d17
- SHA256
  
  c9fffa589040d8a6d22285255604948ff3bb3efa7077c776b6b09272bc293b7d
- SHA512
  
  77b67f4cf6344f56e20172357831497c6ae4ff57c5a852762437419a7e5819805e10098dc87f90e937cf7603b72a94e6cf66681e1602974355fae8644b2a42dc
- SSDEEP
  
  12288:WHt2oRiGYi03velDeWJcqLofSfAuyOrC:c7zoWJchf
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence