54e23d4c54f3cd2187d321eee8a75a618f691138ce7a8f7d046be8839b2ede04 | Triage

Sharing

General

Target

299e18e04458eeb1a11b64da773e303f
Size

393KB
Sample

231231-fx5btsbfap
MD5

299e18e04458eeb1a11b64da773e303f
SHA1

38f92f16f463c5c8e45724d7bab2f4d12abb97ce
SHA256

54e23d4c54f3cd2187d321eee8a75a618f691138ce7a8f7d046be8839b2ede04
SHA512

da9eafe80d15b5a65082c52e463fbd5bb9c87811f279ac47f63dc61124d945ff437486615e52a6d0d0a90f39eadf8536f60533d7e29318fa3bbd0fe0a5491cbd
SSDEEP

12288:8PF/X5IbQ6b7MP+Dd2HFP6BR6b7MP+Dd2l5:8PtGx7MP+h2lP6Bw7MP+h2T

Score

8^/10

bootkit persistence

Malware Config

Targets

- Target
  
  299e18e04458eeb1a11b64da773e303f
- Size
  
  393KB
- MD5
  
  299e18e04458eeb1a11b64da773e303f
- SHA1
  
  38f92f16f463c5c8e45724d7bab2f4d12abb97ce
- SHA256
  
  54e23d4c54f3cd2187d321eee8a75a618f691138ce7a8f7d046be8839b2ede04
- SHA512
  
  da9eafe80d15b5a65082c52e463fbd5bb9c87811f279ac47f63dc61124d945ff437486615e52a6d0d0a90f39eadf8536f60533d7e29318fa3bbd0fe0a5491cbd
- SSDEEP
  
  12288:8PF/X5IbQ6b7MP+Dd2HFP6BR6b7MP+Dd2l5:8PtGx7MP+h2lP6Bw7MP+h2T
Score

8^/10

bootkit persistence
- Drops file in Drivers directory
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2