Overview

overview

7

Static

static

7

b63469d235...1a.exe

windows7-x64

7

b63469d235...1a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b63469d235975299ce66f31caca4d71a

  • Size

    341KB

  • Sample

    240306-b61msagg95

  • MD5

    b63469d235975299ce66f31caca4d71a

  • SHA1

    a761f8deb078812c38cd5c2ef28d4bb1260749b6

  • SHA256

    753a2d9592bbf7838154660690453a3de937d624f5a6b485a49756d14b641243

  • SHA512

    64ca99306378da7db73bd7eee68b967e449635da3554aad38b90ddd190313e8a075635056ca3f4e7ea72ae685bd6ee4d8af67630a363df90f0b3dd73d4a86e7d

  • SSDEEP

    6144:YfZ/nwzIhoZib9i0ju9BKVoEZUWQORt8EHpwc09spv1Jkx4jaHM7z:YfpPOZiBiq3zxRYEHpwc6sp9ySja0

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      b63469d235975299ce66f31caca4d71a

    • Size

      341KB

    • MD5

      b63469d235975299ce66f31caca4d71a

    • SHA1

      a761f8deb078812c38cd5c2ef28d4bb1260749b6

    • SHA256

      753a2d9592bbf7838154660690453a3de937d624f5a6b485a49756d14b641243

    • SHA512

      64ca99306378da7db73bd7eee68b967e449635da3554aad38b90ddd190313e8a075635056ca3f4e7ea72ae685bd6ee4d8af67630a363df90f0b3dd73d4a86e7d

    • SSDEEP

      6144:YfZ/nwzIhoZib9i0ju9BKVoEZUWQORt8EHpwc09spv1Jkx4jaHM7z:YfpPOZiBiq3zxRYEHpwc6sp9ySja0

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks