dd134a3bd1c5e5a1693011156eb55ee07507eb916ede1fa13fe1ae1812cb5d66 | Triage

Sharing

General

Target

3b763465d1e23fb99e861998d78a62b0
Size

331KB
Sample

240101-awfn7abdc5
MD5

3b763465d1e23fb99e861998d78a62b0
SHA1

7e4928b4fae01310607aa1557de19190093938ed
SHA256

dd134a3bd1c5e5a1693011156eb55ee07507eb916ede1fa13fe1ae1812cb5d66
SHA512

622f88df2031629834276f97707572669889292e444316d19206db151fad053216af0642acb85ffd6e4ae39040688db3a1e0b64084d30ef0b199b41dba0ce711
SSDEEP

6144:5ue2DpK65NgBESC2LtT/FEy0/eA/YsnR7byCB3ebwtIMVahGkiJohoP:5utpK4NGjziyhaRRgbbQku

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  3b763465d1e23fb99e861998d78a62b0
- Size
  
  331KB
- MD5
  
  3b763465d1e23fb99e861998d78a62b0
- SHA1
  
  7e4928b4fae01310607aa1557de19190093938ed
- SHA256
  
  dd134a3bd1c5e5a1693011156eb55ee07507eb916ede1fa13fe1ae1812cb5d66
- SHA512
  
  622f88df2031629834276f97707572669889292e444316d19206db151fad053216af0642acb85ffd6e4ae39040688db3a1e0b64084d30ef0b199b41dba0ce711
- SSDEEP
  
  6144:5ue2DpK65NgBESC2LtT/FEy0/eA/YsnR7byCB3ebwtIMVahGkiJohoP:5utpK4NGjziyhaRRgbbQku
Score

7^/10

bootkit persistence
- Executes dropped EXE
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2