47a9879a0e77655fc84ff7ee253b44d4a88916af78dbe11b8e4492bb277ad85d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fb1768dfd4a929e25f2406cc1094278
Size

112KB
Sample

231224-ytynzsheb2
MD5

0fb1768dfd4a929e25f2406cc1094278
SHA1

e452074d4223e9b9b747cbc85f89f51d1d28e39c
SHA256

47a9879a0e77655fc84ff7ee253b44d4a88916af78dbe11b8e4492bb277ad85d
SHA512

ae57ca1a23abefe50c13bf1eb288f2d72e368d7dc82e36ac866d32144354632bf919c3b54d3c8d29279288b44634dd2f2896b246eb1d78d422f309f1983857fc
SSDEEP

3072:HajaqtjiLH14kf0r0d1kY2HVLdEfP4TFg2djFTk1Ba2:HgFjwOkfjd1kY2Hxe0FgWjFTk1Ba2

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  OutdoVote.exe
- Size
  
  117KB
- MD5
  
  b747c3ba90150394b9c378786ea12f30
- SHA1
  
  eae9124b5542d2b3049d37581b7fe8063380214b
- SHA256
  
  5933089f0ff8713d066dccb89c5c2c6d479bcbd088e237c0b29c7097ce5c6800
- SHA512
  
  991a2bbb4913623d4a64540338d770b6e38dc41d59617be42ad01e74466b5a4a37ffa464bb8abf4943a482175bc2ca3cb62bfb10f24d06931a520d364671e916
- SSDEEP
  
  1536:d0C9soM0owa8YI0S20K4WVbRH86se3zYX21EofVRhxDG6n9ol6PniMdNXa120wBu:GCsoMqCfPRc8HJDG6BfiMygvFm
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

bootkitpersistence