General

  • Target

    avast_free_antivirus_setup_online.exe

  • Size

    257KB

  • Sample

    240303-adbyaaba56

  • MD5

    c0e1effcc808c70af98070ad3d81f7dd

  • SHA1

    9eeaa7fe2cd61dc7202a81debfbad307f36d43d9

  • SHA256

    8e7a0700e64507ba63c53f2df803fbf233c10b81f2286ae19b8fbbaedd55b01b

  • SHA512

    2808973b36691c3d91063f0e90226bea4c3f8f13f87674366a8f74dd3ec8418caad1d876a254b45afab3a9e8c53a5e7edd589ef6f620d0ef66123df7c2f9460d

  • SSDEEP

    3072:K2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhAn+T7:K0KgGwHqwOOELha+sm2D2+Uhngu1F1

Score
6/10

Malware Config

Targets

    • Target

      avast_free_antivirus_setup_online.exe

    • Size

      257KB

    • MD5

      c0e1effcc808c70af98070ad3d81f7dd

    • SHA1

      9eeaa7fe2cd61dc7202a81debfbad307f36d43d9

    • SHA256

      8e7a0700e64507ba63c53f2df803fbf233c10b81f2286ae19b8fbbaedd55b01b

    • SHA512

      2808973b36691c3d91063f0e90226bea4c3f8f13f87674366a8f74dd3ec8418caad1d876a254b45afab3a9e8c53a5e7edd589ef6f620d0ef66123df7c2f9460d

    • SSDEEP

      3072:K2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhAn+T7:K0KgGwHqwOOELha+sm2D2+Uhngu1F1

    Score
    6/10
    • Adds Run key to start application

    • Checks for any installed AV software in registry

    • Downloads MZ/PE file

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks