Overview

overview

7

Static

static

7

127f08fe22...73.exe

windows7-x64

7

127f08fe22...73.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    127f08fe22c649a4b14c8a80180d8573

  • Size

    329KB

  • Sample

    231225-kj6d7addf6

  • MD5

    127f08fe22c649a4b14c8a80180d8573

  • SHA1

    6dec2f3cf594412a9617e8360a8351cadf2fccae

  • SHA256

    4cead9edabf18ae8ccd012771b08442176dd05882230deda147f750bdb13e28d

  • SHA512

    b4bcb7092fc2b59bc4b13a349ea81a950176c2302a453868f8f62c24e5373ab60693a6af6d5969bef7e9801f565b1cf66bdd5b8b3afb180114fd22c36227b2fa

  • SSDEEP

    6144:VePJYhcvhLxotp++sCTHUIKz3JWGYBjWo8FgUJqO36yHiWjccoMHOBihL:VePJYIh9of++skOYBjDsgUwOq+ccfHUq

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      127f08fe22c649a4b14c8a80180d8573

    • Size

      329KB

    • MD5

      127f08fe22c649a4b14c8a80180d8573

    • SHA1

      6dec2f3cf594412a9617e8360a8351cadf2fccae

    • SHA256

      4cead9edabf18ae8ccd012771b08442176dd05882230deda147f750bdb13e28d

    • SHA512

      b4bcb7092fc2b59bc4b13a349ea81a950176c2302a453868f8f62c24e5373ab60693a6af6d5969bef7e9801f565b1cf66bdd5b8b3afb180114fd22c36227b2fa

    • SSDEEP

      6144:VePJYhcvhLxotp++sCTHUIKz3JWGYBjWo8FgUJqO36yHiWjccoMHOBihL:VePJYIh9of++skOYBjDsgUwOq+ccfHUq

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks