34214083ce60696dc171d58c3152856c1a0eb661a4741e22a340bdd52258b130 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdec060963b6a2174e02dbf634f80f47da30b5aa144e3d0bd58c33605c2cced7_payload.exe
Size

421KB
Sample

240118-3m9vwsghgk
MD5

a88a0c4d6e13fae0fe18355522632341
SHA1

7efeee839a564461fdafc79a3c22d490137a6ef7
SHA256

34214083ce60696dc171d58c3152856c1a0eb661a4741e22a340bdd52258b130
SHA512

d571660db485cad1b48cc65864a37af0ed3045147106209f53dc7e712881f72e7cdc9d3f707598fd745b5b8164b1b4b9ee15b122c7ac6c609f6c287c1049401c
SSDEEP

12288:Vtgngwr9wDtwTiLwDUwS9woaH6w4/9C1nA3W2PiTuNyl036pfKbQxr/hNi1LLAEj:j+gwr9wDtwTiLwDUwIwoaH6w4/9OnAC4

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  bdec060963b6a2174e02dbf634f80f47da30b5aa144e3d0bd58c33605c2cced7_payload.exe
- Size
  
  421KB
- MD5
  
  a88a0c4d6e13fae0fe18355522632341
- SHA1
  
  7efeee839a564461fdafc79a3c22d490137a6ef7
- SHA256
  
  34214083ce60696dc171d58c3152856c1a0eb661a4741e22a340bdd52258b130
- SHA512
  
  d571660db485cad1b48cc65864a37af0ed3045147106209f53dc7e712881f72e7cdc9d3f707598fd745b5b8164b1b4b9ee15b122c7ac6c609f6c287c1049401c
- SSDEEP
  
  12288:Vtgngwr9wDtwTiLwDUwS9woaH6w4/9C1nA3W2PiTuNyl036pfKbQxr/hNi1LLAEj:j+gwr9wDtwTiLwDUwIwoaH6w4/9OnAC4
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence