Overview

overview

7

Static

static

3

6953862905...cf.exe

windows7-x64

7

6953862905...cf.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    695386290557472de0d1d2cb64167acf

  • Size

    261KB

  • Sample

    231226-m4xnwsbcc5

  • MD5

    695386290557472de0d1d2cb64167acf

  • SHA1

    8a6066184b3c71dbcecf26f87cce002a2daa9434

  • SHA256

    9a212adf4f99303f78d10283f5fe52b56fdbf50bf2526cbdc5626e242be9f49b

  • SHA512

    1b7a484080aab5f7b1613a83c5991b5d2c9977f63850270054c8cf8f5e10d394a99f003d232a09cf776a262767890fdd84bb469a6d686fc5d20e9078f3fa97aa

  • SSDEEP

    6144:S5O84FS69xxY3hkm1ZDLZA3M7KrD37lSCVzhhy1:jp0hGmvLZA3M7KrDJVm

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      695386290557472de0d1d2cb64167acf

    • Size

      261KB

    • MD5

      695386290557472de0d1d2cb64167acf

    • SHA1

      8a6066184b3c71dbcecf26f87cce002a2daa9434

    • SHA256

      9a212adf4f99303f78d10283f5fe52b56fdbf50bf2526cbdc5626e242be9f49b

    • SHA512

      1b7a484080aab5f7b1613a83c5991b5d2c9977f63850270054c8cf8f5e10d394a99f003d232a09cf776a262767890fdd84bb469a6d686fc5d20e9078f3fa97aa

    • SSDEEP

      6144:S5O84FS69xxY3hkm1ZDLZA3M7KrD37lSCVzhhy1:jp0hGmvLZA3M7KrDJVm

    Score
    7/10
    bootkitpersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks