e8f3aa04ff847a28bd0804f78fe19c50365521f8d4f96decdb89b1b3aa736a01 | Triage

Sharing

General

Target

3a1ac507da24db9cc7329ed666b89d2d
Size

922KB
Sample

231231-r1z23aada2
MD5

3a1ac507da24db9cc7329ed666b89d2d
SHA1

4c964315387ec86cb9116157bf574d580e77168b
SHA256

e8f3aa04ff847a28bd0804f78fe19c50365521f8d4f96decdb89b1b3aa736a01
SHA512

591f0646da5a143a5cb33e9b17e9a8de841bf90f4fde64ccdfe93030234b101c441929d9feb3edff4acbbe7533c3fa071193343220740f656bb6fffdefaebf43
SSDEEP

12288:lTXOmFqdGPNR3XV6BdTIsF8KJHYW9FyK/eXZDxMlTrAqQZKeb:lT/7nV2IQYQyK2XL4lQZKA

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  3a1ac507da24db9cc7329ed666b89d2d
- Size
  
  922KB
- MD5
  
  3a1ac507da24db9cc7329ed666b89d2d
- SHA1
  
  4c964315387ec86cb9116157bf574d580e77168b
- SHA256
  
  e8f3aa04ff847a28bd0804f78fe19c50365521f8d4f96decdb89b1b3aa736a01
- SHA512
  
  591f0646da5a143a5cb33e9b17e9a8de841bf90f4fde64ccdfe93030234b101c441929d9feb3edff4acbbe7533c3fa071193343220740f656bb6fffdefaebf43
- SSDEEP
  
  12288:lTXOmFqdGPNR3XV6BdTIsF8KJHYW9FyK/eXZDxMlTrAqQZKeb:lT/7nV2IQYQyK2XL4lQZKA
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence