Overview

overview

7

Static

static

7

5b6e3c5027...5f.exe

windows7-x64

7

5b6e3c5027...5f.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5b6e3c50271b5c11ca1543ab60a2e75f

  • Size

    480KB

  • Sample

    240114-rd6w4abdck

  • MD5

    5b6e3c50271b5c11ca1543ab60a2e75f

  • SHA1

    3a14d4dae90620e6bb8cc29e8381e6452243c49f

  • SHA256

    e372ef079ef64f837be82142f8d222ffc8ab7252d44976f5e3ee4b367b5150ac

  • SHA512

    f9a1d62b68920bf25d0708f5b01853602ecd20b0e30850c9013dc4df33638964e8ac5084ead5e8572d141adcbed065e02f709b539bea2fd19dc8944f406abb94

  • SSDEEP

    6144:JuaEPxHgstn4fRj9mwBrEHwzJwI7/R+5INSwhcO5Prd1Hc7j:MTPxAqeh9mwBr/l/R2INSccO5PjHoj

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      5b6e3c50271b5c11ca1543ab60a2e75f

    • Size

      480KB

    • MD5

      5b6e3c50271b5c11ca1543ab60a2e75f

    • SHA1

      3a14d4dae90620e6bb8cc29e8381e6452243c49f

    • SHA256

      e372ef079ef64f837be82142f8d222ffc8ab7252d44976f5e3ee4b367b5150ac

    • SHA512

      f9a1d62b68920bf25d0708f5b01853602ecd20b0e30850c9013dc4df33638964e8ac5084ead5e8572d141adcbed065e02f709b539bea2fd19dc8944f406abb94

    • SSDEEP

      6144:JuaEPxHgstn4fRj9mwBrEHwzJwI7/R+5INSwhcO5Prd1Hc7j:MTPxAqeh9mwBr/l/R2INSccO5PjHoj

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks