Overview

overview

7

Static

static

7

0bd6d55af9...ed.exe

windows7-x64

7

0bd6d55af9...ed.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0bd6d55af9b1edd1de96f8a800db86ed

  • Size

    338KB

  • Sample

    231225-havvzsefak

  • MD5

    0bd6d55af9b1edd1de96f8a800db86ed

  • SHA1

    e8c49a9fbe35a7dd64798dfcff8f124f3f61417d

  • SHA256

    7f28bc54bda7612062fc668975e5db8fb322f4f276a7a5fa949aed07bd33e244

  • SHA512

    c74d6a9d87e2bf5579a3a6a3da298e782c19bd54e9418897865f337e6cd0cd46ceed9e9f0023d1b71cdfb95e0f5b71371636752eb4e28cb65432f09589a162b7

  • SSDEEP

    6144:PA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97c594CBAHTBF/m4//QZnjzVYzlHBn:Pjyy64VrDqTWIzW+9YMCBMk4ojzKzlhn

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      0bd6d55af9b1edd1de96f8a800db86ed

    • Size

      338KB

    • MD5

      0bd6d55af9b1edd1de96f8a800db86ed

    • SHA1

      e8c49a9fbe35a7dd64798dfcff8f124f3f61417d

    • SHA256

      7f28bc54bda7612062fc668975e5db8fb322f4f276a7a5fa949aed07bd33e244

    • SHA512

      c74d6a9d87e2bf5579a3a6a3da298e782c19bd54e9418897865f337e6cd0cd46ceed9e9f0023d1b71cdfb95e0f5b71371636752eb4e28cb65432f09589a162b7

    • SSDEEP

      6144:PA5wVdCy6wrbDY0rDqTWC4zEDzKuTrSbxc97c594CBAHTBF/m4//QZnjzVYzlHBn:Pjyy64VrDqTWIzW+9YMCBMk4ojzKzlhn

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks