Overview

overview

7

Static

static

7

5a103321d3...c1.dll

windows7-x64

7

5a103321d3...c1.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a103321d3351f09488553c0616d73c1

  • Size

    1.2MB

  • Sample

    240114-c6cfmabfc9

  • MD5

    5a103321d3351f09488553c0616d73c1

  • SHA1

    43de26a2ed06eb5ca6a993d990e171accd7b4bf4

  • SHA256

    08e28e0ed3d585fba4ba4ee4c5155832a660e7af615ad5c416fbdc84b275de8f

  • SHA512

    b09750c47c6b06af07113c0bd99c466b6f221df502189eadbc74f6c1839c89a83197c6ac5c188cbd4b8ebf4ad34a58254a38ee643a75ead406c92a476ee21c5a

  • SSDEEP

    24576:7XRI9kAEIIq5+kR8BCxKwoRgPP9sxdS7vw+peg3rMRm2zCXMVSqF5SXfVr:7XOkAse+kqBCxKwoits38vw+/6feaFqr

Score
7/10
bootkitpersistencevmprotect

Malware Config

Targets

    • Target

      5a103321d3351f09488553c0616d73c1

    • Size

      1.2MB

    • MD5

      5a103321d3351f09488553c0616d73c1

    • SHA1

      43de26a2ed06eb5ca6a993d990e171accd7b4bf4

    • SHA256

      08e28e0ed3d585fba4ba4ee4c5155832a660e7af615ad5c416fbdc84b275de8f

    • SHA512

      b09750c47c6b06af07113c0bd99c466b6f221df502189eadbc74f6c1839c89a83197c6ac5c188cbd4b8ebf4ad34a58254a38ee643a75ead406c92a476ee21c5a

    • SSDEEP

      24576:7XRI9kAEIIq5+kR8BCxKwoRgPP9sxdS7vw+peg3rMRm2zCXMVSqF5SXfVr:7XOkAse+kqBCxKwoits38vw+/6feaFqr

    Score
    7/10
    bootkitpersistencevmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks