ea7d3768861df8a2d76263505a63e6a71b04cc98470f67c46869e2d22a8d4c51 | Triage

Sharing

General

Target

ea7d3768861df8a2d76263505a63e6a71b04cc98470f67c46869e2d22a8d4c51
Size

529KB
Sample

240129-fmqexscbak
MD5

78aec77678723b2c548cd8edfa718a5d
SHA1

67e716821009ff236769a770e28d80d9130398a8
SHA256

ea7d3768861df8a2d76263505a63e6a71b04cc98470f67c46869e2d22a8d4c51
SHA512

688cdfd85a890e98c17fe32777e4a0a4eee936e1f7b1d337aab75b9687eff4d6fe81c34be6540d296c5268c7fc7ae535d8987d448d70cfeedcbfba55fa5f0f03
SSDEEP

12288:gI9JeDx/i9EFD0Zl+NiP8LniQytcCwBOsuv:beDx/iADS+NiZQ5CwBOv

Score

10^/10

bootkit persistence

Malware Config

Targets

- Target
  
  ea7d3768861df8a2d76263505a63e6a71b04cc98470f67c46869e2d22a8d4c51
- Size
  
  529KB
- MD5
  
  78aec77678723b2c548cd8edfa718a5d
- SHA1
  
  67e716821009ff236769a770e28d80d9130398a8
- SHA256
  
  ea7d3768861df8a2d76263505a63e6a71b04cc98470f67c46869e2d22a8d4c51
- SHA512
  
  688cdfd85a890e98c17fe32777e4a0a4eee936e1f7b1d337aab75b9687eff4d6fe81c34be6540d296c5268c7fc7ae535d8987d448d70cfeedcbfba55fa5f0f03
- SSDEEP
  
  12288:gI9JeDx/i9EFD0Zl+NiP8LniQytcCwBOsuv:beDx/iADS+NiZQ5CwBOv
Score

10^/10

bootkit persistence
- Pitou
  Pitou.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence