5acca206120a395ed29655958193c3a08cc4f192c12638961959e33602c45563 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3882da2e9fe2f624d2d3dc2daa812123
Size

134KB
Sample

231231-q14jtaeggl
MD5

3882da2e9fe2f624d2d3dc2daa812123
SHA1

6527c22876c246b24a7b9ec251cc298dcb98d50a
SHA256

5acca206120a395ed29655958193c3a08cc4f192c12638961959e33602c45563
SHA512

363a3ec92f3dc995a8b77dae570ba69b91c19ace4f9dd95e6e4e55aceb7ceda68455159416ede2171d4d8015d77582f530bfd43bcf5eaf09506ddec6626f98f4
SSDEEP

3072:VqMRETOokWMioAVwddmeBq3/KAsWixO4jvjiLCPR:esWWewddmByA8YOvj4CPR

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  Microsoft.Windows7.Ultimate.X8.serial.keygen.exe
- Size
  
  147KB
- MD5
  
  95da3e460ccb4383b1d18fc547f14c82
- SHA1
  
  a2a65f60cf52e1ecde9c592b26694cfdb41df73e
- SHA256
  
  aff02cb8b18366fc030ae1c5d8628db13a8474ad662947be837707fa1884feb5
- SHA512
  
  8f1280f428ee264c76cd02a3860443c2612850b4a2f3f3d5f116d454b66a8d7b0431a8b5d96985f89ee67a37e76258470583aefd64fea1e378de03208e6462a9
- SSDEEP
  
  3072:JtjNVoCsri4Kpyg8C53ZGdweUXIrGebd0sIY/4:Jqgpd8C53tekSd0sn4
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2