dfde9cdfff24415281c70e4bbc8d7543d8a867a448d1125b6c224ff0dd378d54 | Triage

Sharing

General

Target

dfde9cdfff24415281c70e4bbc8d7543d8a867a448d1125b6c224ff0dd378d54
Size

4.7MB
Sample

240312-lzrfmsga67
MD5

e234c761134b9ffd8401e214d4984dc1
SHA1

df37cc09f866cec1f039a98fc07888198a5b06c9
SHA256

dfde9cdfff24415281c70e4bbc8d7543d8a867a448d1125b6c224ff0dd378d54
SHA512

0f845bd1532f586a4c01845ccdea5cf6510f52189781659a2188535f648370b7058d58009111c1d553064a70d7270a0f1dcfc2a343d8755ce91c5143dc26d2d3
SSDEEP

24576:IsqiKUgGtZeTq/SI0w90/24PHfZVt+xd3vopBcef8N7SF/4ErHBkBcM2lE4ZEbLd:vWA9na3Zfo7RErhplEmbTk

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  dfde9cdfff24415281c70e4bbc8d7543d8a867a448d1125b6c224ff0dd378d54
- Size
  
  4.7MB
- MD5
  
  e234c761134b9ffd8401e214d4984dc1
- SHA1
  
  df37cc09f866cec1f039a98fc07888198a5b06c9
- SHA256
  
  dfde9cdfff24415281c70e4bbc8d7543d8a867a448d1125b6c224ff0dd378d54
- SHA512
  
  0f845bd1532f586a4c01845ccdea5cf6510f52189781659a2188535f648370b7058d58009111c1d553064a70d7270a0f1dcfc2a343d8755ce91c5143dc26d2d3
- SSDEEP
  
  24576:IsqiKUgGtZeTq/SI0w90/24PHfZVt+xd3vopBcef8N7SF/4ErHBkBcM2lE4ZEbLd:vWA9na3Zfo7RErhplEmbTk
Score

6^/10

bootkit persistence
- Drops desktop.ini file(s)
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence