6cfa43ff0e537606d86718d9d618da11422deed60bd6bea0ad63dd1eab1eed30 | Triage

Sharing

General

Target

6cfa43ff0e537606d86718d9d618da11422deed60bd6bea0ad63dd1eab1eed30
Size

15.0MB
Sample

231219-qbnr3aabdq
MD5

1673ef97e54c3af54983aec906835e81
SHA1

0b4ef70a94a07c75ab2e6ac080f12f8f18dbade3
SHA256

6cfa43ff0e537606d86718d9d618da11422deed60bd6bea0ad63dd1eab1eed30
SHA512

1510ac2f79e7300a736477a79052ede1203f83ca008cb10205e63b667ee2570f5631b34944d51021322305e7fe6724ecb737999239843423c70e7bdb59ca08d8
SSDEEP

393216:a4UdVEy9qMBNLtZaL+xbxlSqKoe8kfiEiSoPqbVRlcdfYkf:a4UdVEy9qMBN7aLQYWEToP6c1f

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  6cfa43ff0e537606d86718d9d618da11422deed60bd6bea0ad63dd1eab1eed30
- Size
  
  15.0MB
- MD5
  
  1673ef97e54c3af54983aec906835e81
- SHA1
  
  0b4ef70a94a07c75ab2e6ac080f12f8f18dbade3
- SHA256
  
  6cfa43ff0e537606d86718d9d618da11422deed60bd6bea0ad63dd1eab1eed30
- SHA512
  
  1510ac2f79e7300a736477a79052ede1203f83ca008cb10205e63b667ee2570f5631b34944d51021322305e7fe6724ecb737999239843423c70e7bdb59ca08d8
- SSDEEP
  
  393216:a4UdVEy9qMBNLtZaL+xbxlSqKoe8kfiEiSoPqbVRlcdfYkf:a4UdVEy9qMBN7aLQYWEToP6c1f
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence