Overview

overview

7

Static

static

7

0421c8d007...9e.exe

windows7-x64

7

0421c8d007...9e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0421c8d0077a4a85bbfc186e1e29a69e

  • Size

    242KB

  • Sample

    231225-egz7hadbfm

  • MD5

    0421c8d0077a4a85bbfc186e1e29a69e

  • SHA1

    e55f38a1615070f062abb40180abf8e440b16e94

  • SHA256

    1665cf6f1f36a8f9a6827664284cab8636b9220b0bbdddbb7fcd428638c2b186

  • SHA512

    947c76fabe25dca58c4bd9b99eb8ad4b9b53d09315f50f6f9405f75d9909158d8dce092893051cdfeab260ac4f3fda654c5105ca7f12b792f5e2df82d376312e

  • SSDEEP

    6144:EkeENDvTSn2SV/GuhYdViC7X57+nMNCYOyob0B2:ENEND/k/GLPX57+ndY3Wk2

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      0421c8d0077a4a85bbfc186e1e29a69e

    • Size

      242KB

    • MD5

      0421c8d0077a4a85bbfc186e1e29a69e

    • SHA1

      e55f38a1615070f062abb40180abf8e440b16e94

    • SHA256

      1665cf6f1f36a8f9a6827664284cab8636b9220b0bbdddbb7fcd428638c2b186

    • SHA512

      947c76fabe25dca58c4bd9b99eb8ad4b9b53d09315f50f6f9405f75d9909158d8dce092893051cdfeab260ac4f3fda654c5105ca7f12b792f5e2df82d376312e

    • SSDEEP

      6144:EkeENDvTSn2SV/GuhYdViC7X57+nMNCYOyob0B2:ENEND/k/GLPX57+ndY3Wk2

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks