General

  • Target

    Malware.zip

  • Size

    167KB

  • Sample

    240302-3yya8sba29

  • MD5

    6d11e25b33629c5926823847821eae46

  • SHA1

    9f701f500f6fca5d62cb2d1cf364d29f08cfaa4d

  • SHA256

    b7b83378f42b47d70f93771884cb5560595068d7f234e84bed01f8afad55a9f3

  • SHA512

    a8b1ee94391702ea85f2320a98552f72667ebb73ba6f2b6fe24a11c99667c3b6e8fd7f6144e2ddd8ddf49723ca6d93d9b5995cf07932006c1d55efc819de4008

  • SSDEEP

    3072:fTpA7WtqkBxlGi6bVXraIGhte8UUaxJ68zP/qfGqTfx0zXKZsapuMdT:dwWtrBpwaVtVQ68zPiruKu6T

Score
6/10

Malware Config

Targets

    • Target

      Malware/MBROverwrite.exe

    • Size

      47KB

    • MD5

      62f9fee4d7be1fcabde91c309fb73ea9

    • SHA1

      b2cb6021fa2cb2dad615bba2376808fcff1e131a

    • SHA256

      22c3c15ed0b320ab0f7d3bc040d828a3bd76e7400565e71a8995f555a3ae5153

    • SHA512

      233b4a67c0af4faadce005a2b3d9654c5abb06eff7e3a2842b62d5b857f794b6e0208f238f582cf221414828435846d9d3db46158e41d6bb66421cb8df7cca1c

    • SSDEEP

      768:9yLqzcQ8zwtHEBbGoaPbs9IKRQ5qo2GLQdJK14ztOyjg5YCtKO:cLqzcQ5kJxWpKRfzdJTIyjg57K

    Score
    6/10
    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      Malware/Microsoft Edge Portable Version.exe

    • Size

      113KB

    • MD5

      6b081197f470526e4f24936f91b8c41c

    • SHA1

      4313662b01422bbb6b58408ada8e7a044d6511ba

    • SHA256

      39308a7afd45271a218f13ef6ad028c65f3012901d2ea151bfa06a1b8e76dff1

    • SHA512

      6995818b942a69e43306d9b639a5008f8fc6c73171c2abf15b0fcc69739afce1c63f67b26fac833a813501676c82cd7d826ca728ed2ac94122f868d0a095dfce

    • SSDEEP

      768:0yLqzcQ8zwtHEBbGoaPbs9IKRQ5qo2GLQdJRp4ztOyjg5Y0HiQOtKOc:TLqzcQ5kJxWpKRfzdJuIyjg5XHpKKD

    Score
    6/10
    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      Malware/PC Cleaner Plus.exe

    • Size

      113KB

    • MD5

      2bd129c6466f01433c4ef2ad8223171e

    • SHA1

      9ea75c38c7eaec4b8161495cc6c93922b291663a

    • SHA256

      b45b46985828e27a29cee2ecc0ff8790ed68eabe7a695505b9bd1b0d34e97823

    • SHA512

      980861510a86d13f32ab90fab09cd93ca8bc26bd0b59acbe22f3028173ddb5049082424d38c107f4bb3a44f2d55e72478acdd577f55aff9a13d83c72db13c7dd

    • SSDEEP

      1536:PLqzcQ5kJxWpKRfzdJKIyjg5NSvEDwSo6b+8oNafKD:/EkJY4RpJKJjZKmMKD

    Score
    6/10
    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      Malware/ValentineMBR.exe

    • Size

      406KB

    • MD5

      8d7fce7f7177f6239c806d6724d6fd11

    • SHA1

      53cdee7bb1c73760083ec7f0da716a8b11024401

    • SHA256

      13a643af7fa6e16dd73b86102a88bd83a579ac951e54d2cdf7c5c6ec377eecf7

    • SHA512

      e85d4d50cf2745866306ce9c280eab0e20c2444659da0853afbc6fa40f835702edcd7d0004557a5dc62628a5038912799ff88f3c03fe0db6397a636c470f9d19

    • SSDEEP

      3072:PCGPVHzzgd2HPVVf9AebuLFfK9s7IVNgD4eH9:Prak9gorV6se

    Score
    6/10
    • Adds Run key to start application

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks