Overview

overview

7

Static

static

7

6830bef2e3...75.exe

windows7-x64

7

6830bef2e3...75.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6830bef2e319a95d1c4ae000ff812275

  • Size

    328KB

  • Sample

    231226-mrsjeahbb8

  • MD5

    6830bef2e319a95d1c4ae000ff812275

  • SHA1

    5f7f6d4b0911a89209f039f2b935c3036a783aef

  • SHA256

    3a68cda0485f3e2c094aef98da7445a2ad7f74ef70e82a3ae06b24f5fc771200

  • SHA512

    5ca3db447d4550115069cf8c12999b3d36f3befc0836401bfa8dbeb6c796722a00a3b60df2b44731e86a5e2bbc644314cfd2dfba0fefc24b018382a81144a2fc

  • SSDEEP

    6144:ueXA47CURW+eirtnIwE0XzBTjrBLt4smgZH870qeyFH9sZ4B6xSB:ueXv7tRWwnIKBTjx6smg+70wFdsZk6x8

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      6830bef2e319a95d1c4ae000ff812275

    • Size

      328KB

    • MD5

      6830bef2e319a95d1c4ae000ff812275

    • SHA1

      5f7f6d4b0911a89209f039f2b935c3036a783aef

    • SHA256

      3a68cda0485f3e2c094aef98da7445a2ad7f74ef70e82a3ae06b24f5fc771200

    • SHA512

      5ca3db447d4550115069cf8c12999b3d36f3befc0836401bfa8dbeb6c796722a00a3b60df2b44731e86a5e2bbc644314cfd2dfba0fefc24b018382a81144a2fc

    • SSDEEP

      6144:ueXA47CURW+eirtnIwE0XzBTjrBLt4smgZH870qeyFH9sZ4B6xSB:ueXv7tRWwnIKBTjx6smg+70wFdsZk6x8

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks