39c6ca978115ae12c0919f91834ce68f54f2f33316fa458d234c453bd277ee91 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

0a405eecb6...8b.exe

windows7-x64

7

0a405eecb6...8b.exe

windows10-2004-x64

7

Sharing

General

Target

0a405eecb682e2998e9cb7a9df86338b
Size

236KB
Sample

231224-wmlpqsdbej
MD5

0a405eecb682e2998e9cb7a9df86338b
SHA1

65843fd1fef4a0c5fabc6191d73e7dd7a8df8a1d
SHA256

39c6ca978115ae12c0919f91834ce68f54f2f33316fa458d234c453bd277ee91
SHA512

bcd74272d37235e70d8d27365bf12d1a31096023b2b6e8c75de09f49a796d0498b8d05f2b8b39a5115d9e34c3e1290ae971faafec709a645ba8c0529fb4540a0
SSDEEP

3072:TlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqsGV+mbx0AnJqDwsl:A3kOMeaavF17EP6qyqsGwmbmAADwtf/i

Score

7^/10

bootkit persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0a405eecb682e2998e9cb7a9df86338b.exe

Resource

win7-20231215-en

bootkit persistence upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

0a405eecb682e2998e9cb7a9df86338b.exe

Resource

win10v2004-20231215-en

bootkit persistence upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  0a405eecb682e2998e9cb7a9df86338b
- Size
  
  236KB
- MD5
  
  0a405eecb682e2998e9cb7a9df86338b
- SHA1
  
  65843fd1fef4a0c5fabc6191d73e7dd7a8df8a1d
- SHA256
  
  39c6ca978115ae12c0919f91834ce68f54f2f33316fa458d234c453bd277ee91
- SHA512
  
  bcd74272d37235e70d8d27365bf12d1a31096023b2b6e8c75de09f49a796d0498b8d05f2b8b39a5115d9e34c3e1290ae971faafec709a645ba8c0529fb4540a0
- SSDEEP
  
  3072:TlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqsGV+mbx0AnJqDwsl:A3kOMeaavF17EP6qyqsGwmbmAADwtf/i
Score

7^/10

bootkit persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistenceupx

behavioral2

bootkitpersistenceupx

© 2018-2025

Terms | Privacy