26b3900e30913cea8724ac03fddaa01927450465708eeee3980ff6baf5b3f8d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3e10dd72476d6b5aea3495d0aa092dc
Size

132KB
Sample

240312-vf2a6sea2z
MD5

c3e10dd72476d6b5aea3495d0aa092dc
SHA1

2bd30a74ad34b1bfcd1bada25d27a4d247ab4ea5
SHA256

26b3900e30913cea8724ac03fddaa01927450465708eeee3980ff6baf5b3f8d5
SHA512

122e1e5e7f191bab5271312416a2753d86f6d3771d46615c1cd4d26c01dc3a2f78d30f09ed3256234e73445519cd412a3b72e7a9edc0706a9bc3d20e09b604e2
SSDEEP

3072:r1hmpuoIN4wb25HiN3FVnNup4UdZCtM/GVaYgZG/T:r/oINcH2FeeICtTVaDZST

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  Windows_Xp_Pro_serials_key.exe
- Size
  
  145KB
- MD5
  
  bce1059e5e2e3527a20c3dff6ddea438
- SHA1
  
  8a3ba45bd5f05525b10d548595940996d630d749
- SHA256
  
  270f1519ff07016c9c9901c2bdc76795865ba7b7c1965643f782a9a9bd0bcbe8
- SHA512
  
  b067bd3b932a440252f33c0bff82cb9ca671012ffd9c2423b5e685be25c177bd7152b0b7e7f3d0164f51a6cfacdabc0cfc4b24c6d47cb57fa75ade37c81bad41
- SSDEEP
  
  3072:XVJVOmvyCoMhdFI7PYnPq4DZkqiL4lIa77m1JCML7Gs:l7vvy67FIMP5D+El7gVKs
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2