59fef4ba67b25f8290c920e30546e69ce37287c0b35a774bd7ed5bbc34fe420c | Triage

Sharing

General

Target

4594e8f1c6b886c0841d564bbe47c64e
Size

235KB
Sample

231226-ajfhnadge8
MD5

4594e8f1c6b886c0841d564bbe47c64e
SHA1

bf5b5b121a53fe4bb468f3b94faa342b8aa9f12a
SHA256

59fef4ba67b25f8290c920e30546e69ce37287c0b35a774bd7ed5bbc34fe420c
SHA512

5fb1376e07e8426da3fb7e1da468b441a76a721d982186deb10323567be39f105923456dda370c602715dd77f7a17beb0a75210f0b80e949f5598ce94ba9faed
SSDEEP

6144:i9VMz6upp66XIIenVh05JSCvIbBTq/T6WmUJM5+kBW:iPMzxpJYHVyLmg/TVJxAW

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  4594e8f1c6b886c0841d564bbe47c64e
- Size
  
  235KB
- MD5
  
  4594e8f1c6b886c0841d564bbe47c64e
- SHA1
  
  bf5b5b121a53fe4bb468f3b94faa342b8aa9f12a
- SHA256
  
  59fef4ba67b25f8290c920e30546e69ce37287c0b35a774bd7ed5bbc34fe420c
- SHA512
  
  5fb1376e07e8426da3fb7e1da468b441a76a721d982186deb10323567be39f105923456dda370c602715dd77f7a17beb0a75210f0b80e949f5598ce94ba9faed
- SSDEEP
  
  6144:i9VMz6upp66XIIenVh05JSCvIbBTq/T6WmUJM5+kBW:iPMzxpJYHVyLmg/TVJxAW
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2