Overview

overview

10

Static

static

3

BUG32.exe

windows7-x64

BUG32.exe

windows10-2004-x64

MEMZ 3.0/MEMZ.bat

windows7-x64

7

MEMZ 3.0/MEMZ.bat

windows10-2004-x64

7

MEMZ 3.0/MEMZ.exe

windows7-x64

6

MEMZ 3.0/MEMZ.exe

windows10-2004-x64

7

MEMZ-Destructive.exe

windows7-x64

6

MEMZ-Destructive.exe

windows10-2004-x64

7

Trojan.Win32.000.exe

windows7-x64

Trojan.Win32.000.exe

windows10-2004-x64

Trojan.Win...or.exe

windows7-x64

Trojan.Win...or.exe

windows10-2004-x64

Trojan.Win...sk.exe

windows7-x64

6

Trojan.Win...sk.exe

windows10-2004-x64

6

Resubmissions

03-03-2024 13:51

240303-q5vgpscb85 10

03-03-2024 13:45

240303-q2r76sbd9y 10

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-03-2024 13:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Trojan.Win32.KillDisk.exe

  • Size

    60KB

  • MD5

    571de903333a6951b8875a73f6cf99c5

  • SHA1

    5c2ef418a36799541cec673dd7d9f87371a9e3bd

  • SHA256

    8a81a1d0fae933862b51f63064069aa5af3854763f5edc29c997964de5e284e5

  • SHA512

    dcfb8ae96ec975938592f22932a804b3105bc3293a22ed336bd9687045bc0e168e6aef9a1485f1a2d986e1d7e928221d7ee7b53f756958b700fc4dada503f309

  • SSDEEP

    1536:8f0XnibgFacx2jecu0FRf6Ut3JhH0Y4LZ2FkRg:fEecVNvhUYqS

Score
6/10
bootkitpersistence

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    bootkitpersistence
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Trojan.Win32.KillDisk.exe
    "C:\Users\Admin\AppData\Local\Temp\Trojan.Win32.KillDisk.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    • Drops file in Windows directory
    PID:2024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\MSOCache\All Users\{90140000-0011-0000-0000-0000000FF1CE}-C\WFNFOZVSRT
    Filesize

    1.4MB

    MD5

    1c7b324a6f03a393011908d3644a0746

    SHA1

    a647ce1a5b769c43d2a8a959b57feaae835cc627

    SHA256

    3b348a869527935b596d3982a9df949f99a33c3002da57f172bf1840ea3a3ca2

    SHA512

    219968e597005f82203548b77292f694a17efa076739094ecc8411187b1a7a56c31c866e80d8237654d402765d0afa37a6cf67877bb1dc7f98aa7de1c2181f36

    Download Submit