Overview

overview

7

Static

static

7

7ecd4e4575...f4.exe

windows7-x64

7ecd4e4575...f4.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    7ecd4e45750aabbad22511dfa1749cf4

  • Size

    31KB

  • Sample

    240129-ecqr9safgl

  • MD5

    7ecd4e45750aabbad22511dfa1749cf4

  • SHA1

    faea4500a34eefbf9c7897724ab0b903522889da

  • SHA256

    5960cfc8689906944402b1fa5ae084d1f0ecd7f403aefeb8f1a496811ea2c955

  • SHA512

    2a55a7c0e15d589a64b2c8ed179897d081323d44369bcbf597488173cdb5bdc56f15f4477ca81f0459c425ebe2da92cdbbc0d6b8f32681af28646ee0f71fea5a

  • SSDEEP

    768:FhYo1HCKuaFUSRWxGRNECTRz2s/A2oUg:FSo1LHS0RNE4F

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      7ecd4e45750aabbad22511dfa1749cf4

    • Size

      31KB

    • MD5

      7ecd4e45750aabbad22511dfa1749cf4

    • SHA1

      faea4500a34eefbf9c7897724ab0b903522889da

    • SHA256

      5960cfc8689906944402b1fa5ae084d1f0ecd7f403aefeb8f1a496811ea2c955

    • SHA512

      2a55a7c0e15d589a64b2c8ed179897d081323d44369bcbf597488173cdb5bdc56f15f4477ca81f0459c425ebe2da92cdbbc0d6b8f32681af28646ee0f71fea5a

    • SSDEEP

      768:FhYo1HCKuaFUSRWxGRNECTRz2s/A2oUg:FSo1LHS0RNE4F

    Score
    7/10
    bootkitpersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks