Overview

overview

7

Static

static

7

58133c8045...65.exe

windows7-x64

7

58133c8045...65.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    58133c80458f603d2d98156672faf365

  • Size

    329KB

  • Sample

    240113-fx5mlacfel

  • MD5

    58133c80458f603d2d98156672faf365

  • SHA1

    59e26ae9bbf180c8818ce048bdf243495aa7ea70

  • SHA256

    42a4d109691b2d0c6560a5f3563f1022210d222876285644c42dcbe85a25dd99

  • SHA512

    025ccf88adb687b94bceeefab36c16964af162c6654bb759b844c9a27f957c819a2c2097730e887420030e42895b5fd5f46804ae4cc2c2a6443679ca25d8c813

  • SSDEEP

    6144:CS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUJwS8E/Nvs/oqxLSiR0QRT33uOYIEzr:ME6y66e3N272PYXZ6S8EFv5MSwr+Oqzr

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      58133c80458f603d2d98156672faf365

    • Size

      329KB

    • MD5

      58133c80458f603d2d98156672faf365

    • SHA1

      59e26ae9bbf180c8818ce048bdf243495aa7ea70

    • SHA256

      42a4d109691b2d0c6560a5f3563f1022210d222876285644c42dcbe85a25dd99

    • SHA512

      025ccf88adb687b94bceeefab36c16964af162c6654bb759b844c9a27f957c819a2c2097730e887420030e42895b5fd5f46804ae4cc2c2a6443679ca25d8c813

    • SSDEEP

      6144:CS+QH6yN8wfRe3q+2ZYbO2PY/eQanlrUJwS8E/Nvs/oqxLSiR0QRT33uOYIEzr:ME6y66e3N272PYXZ6S8EFv5MSwr+Oqzr

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks