Overview

overview

7

Static

static

7

0396b490ff...41.exe

windows7-x64

7

0396b490ff...41.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0396b490ff99433b8c2cd13c0dcd7841

  • Size

    234KB

  • Sample

    231225-d95r1schh5

  • MD5

    0396b490ff99433b8c2cd13c0dcd7841

  • SHA1

    3954e45851f211386bc84574cb1fb7f59123ae8b

  • SHA256

    30b4539018857ce9d839c357cb7e04695038de6a196fa26e687585705bcf34fb

  • SHA512

    a1998c81fa77ec53726348d5d6817eda34594a60848aa2e9dcb1cf118b1530d8ca969978cfc2efdf64b8ce2e20f3e0be0fc219997effc2bddb687b6626b6fdba

  • SSDEEP

    6144:i7n5WPqr2GTsNs7tbYvAWjVYjAmAcV7I8wEzf3Wc/UI:i7n5WPqFsNU8XV2PIm/Wc/UI

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      0396b490ff99433b8c2cd13c0dcd7841

    • Size

      234KB

    • MD5

      0396b490ff99433b8c2cd13c0dcd7841

    • SHA1

      3954e45851f211386bc84574cb1fb7f59123ae8b

    • SHA256

      30b4539018857ce9d839c357cb7e04695038de6a196fa26e687585705bcf34fb

    • SHA512

      a1998c81fa77ec53726348d5d6817eda34594a60848aa2e9dcb1cf118b1530d8ca969978cfc2efdf64b8ce2e20f3e0be0fc219997effc2bddb687b6626b6fdba

    • SSDEEP

      6144:i7n5WPqr2GTsNs7tbYvAWjVYjAmAcV7I8wEzf3Wc/UI:i7n5WPqFsNU8XV2PIm/Wc/UI

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks