Overview

overview

7

Static

static

7

2d90bf01e1...95.exe

windows7-x64

7

2d90bf01e1...95.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2d90bf01e1e91c224f3e8cd0be04b695

  • Size

    328KB

  • Sample

    231231-jd7jmahafl

  • MD5

    2d90bf01e1e91c224f3e8cd0be04b695

  • SHA1

    6dec9319cab666af256c7582541f5e212dc15281

  • SHA256

    16db3b65c6531d2c75bd72e7a5e328e4c69599b24472edb6be3934fa4f39ba86

  • SHA512

    8887f71344b27608fb39010db3ba063504c1c4477879664f644791ca63a67ef5b175672018ba6a1c4b6bd40c3076166cf891d9cc95f8a90aa013880222dcf491

  • SSDEEP

    6144:ieXA47CURW+eirtnIwE0XzBTjrBLt4smgZA870pbGLUljIcktZTEm+OAMQ4E/p:ieXv7tRWwnIKBTjx6smgd70pa+BktFNu

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      2d90bf01e1e91c224f3e8cd0be04b695

    • Size

      328KB

    • MD5

      2d90bf01e1e91c224f3e8cd0be04b695

    • SHA1

      6dec9319cab666af256c7582541f5e212dc15281

    • SHA256

      16db3b65c6531d2c75bd72e7a5e328e4c69599b24472edb6be3934fa4f39ba86

    • SHA512

      8887f71344b27608fb39010db3ba063504c1c4477879664f644791ca63a67ef5b175672018ba6a1c4b6bd40c3076166cf891d9cc95f8a90aa013880222dcf491

    • SSDEEP

      6144:ieXA47CURW+eirtnIwE0XzBTjrBLt4smgZA870pbGLUljIcktZTEm+OAMQ4E/p:ieXv7tRWwnIKBTjx6smgd70pa+BktFNu

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks