Overview

overview

6

Static

static

1

c916286fed...a8.exe

windows7-x64

6

c916286fed...a8.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    93s
  • max time network
    116s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/02/2024, 19:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c916286fededd96a8ddb54c5dadb12da0b8403ee313062acab82bbc523f40ea8.exe

  • Size

    2.7MB

  • MD5

    2379604fb08d651a6c47ebfd581c61d6

  • SHA1

    771f268eae01a421903c36aa125327fb3f85ead0

  • SHA256

    c916286fededd96a8ddb54c5dadb12da0b8403ee313062acab82bbc523f40ea8

  • SHA512

    b200f573ffa69a41499f63f19ca218bd72d68e068cfa8860a2c5690c31f493a12b39ac09467631d91787cb21d8b7c27e85e525b71aee61857b02f375c1e42630

  • SSDEEP

    49152:uKbWkmxrTpKATBIxnZ2rIU3NENa6y7XGyV5cDDRKrnaDPyU:h1ml9mxnZIIRNNeX/3cVPV

Score
6/10
bootkitpersistence

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    bootkitpersistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\c916286fededd96a8ddb54c5dadb12da0b8403ee313062acab82bbc523f40ea8.exe
    "C:\Users\Admin\AppData\Local\Temp\c916286fededd96a8ddb54c5dadb12da0b8403ee313062acab82bbc523f40ea8.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    PID:4464

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4464-0-0x0000000000400000-0x00000000006CD000-memory.dmp

    Filesize

    2.8MB

    Download

  • memory/4464-1-0x0000000000400000-0x00000000006CD000-memory.dmp

    Filesize

    2.8MB

    Download