Overview

overview

10

Static

static

3

BUG32.exe

windows7-x64

BUG32.exe

windows10-2004-x64

MEMZ 3.0/MEMZ.bat

windows7-x64

7

MEMZ 3.0/MEMZ.bat

windows10-2004-x64

7

MEMZ 3.0/MEMZ.exe

windows7-x64

6

MEMZ 3.0/MEMZ.exe

windows10-2004-x64

7

MEMZ-Destructive.exe

windows7-x64

6

MEMZ-Destructive.exe

windows10-2004-x64

7

Trojan.Win32.000.exe

windows7-x64

Trojan.Win32.000.exe

windows10-2004-x64

Trojan.Win...or.exe

windows7-x64

Trojan.Win...or.exe

windows10-2004-x64

Trojan.Win...sk.exe

windows7-x64

6

Trojan.Win...sk.exe

windows10-2004-x64

6

Resubmissions

03-03-2024 13:51

240303-q5vgpscb85 10

03-03-2024 13:45

240303-q2r76sbd9y 10

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-03-2024 13:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Trojan.Win32.KillDisk.exe

  • Size

    60KB

  • MD5

    571de903333a6951b8875a73f6cf99c5

  • SHA1

    5c2ef418a36799541cec673dd7d9f87371a9e3bd

  • SHA256

    8a81a1d0fae933862b51f63064069aa5af3854763f5edc29c997964de5e284e5

  • SHA512

    dcfb8ae96ec975938592f22932a804b3105bc3293a22ed336bd9687045bc0e168e6aef9a1485f1a2d986e1d7e928221d7ee7b53f756958b700fc4dada503f309

  • SSDEEP

    1536:8f0XnibgFacx2jecu0FRf6Ut3JhH0Y4LZ2FkRg:fEecVNvhUYqS

Score
6/10
bootkitpersistence

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    bootkitpersistence
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Trojan.Win32.KillDisk.exe
    "C:\Users\Admin\AppData\Local\Temp\Trojan.Win32.KillDisk.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    • Drops file in Windows directory
    PID:2972

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\MSOCache\All Users\{90140000-0011-0000-0000-0000000FF1CE}-C\WFNFOZVSRT
    Filesize

    5.5MB

    MD5

    4c2682753e77cb4e3d4dd74aabd79c0b

    SHA1

    79186a1c9d3591a9310c66cd5694273b2b1954e4

    SHA256

    2719f9a2a04a3dc56dfffae35056facda708e252f72c3f1dcf9d263883296a8c

    SHA512

    e2a8454b2ccf60341dd4254b2415168595e84c14cfb38b23a1f4f7cdd070fb25076076c03a9ede9a491adfc9186b48032a04d8ee96dc95a98cab15c3e1d279bc

    Download Submit