66267b30f43c6611c112b686dd04391ee18a2ede756abfd77deffe9f5f959a4a | Triage

User tags

Assigned on submission by the user, not by sandbox detections.

Threatview.io Proactive Hunter

Sharing

Copy URL Twitter E-mail

General

Target

QQPCDownload1600.exe
Size

2.1MB
Sample

240316-mdnnasgh9v
MD5

99c06b6a63a5aa0bd87e45177f168b66
SHA1

b5d2ed611560a4b011269d82f19a6ce7bddd70fb
SHA256

66267b30f43c6611c112b686dd04391ee18a2ede756abfd77deffe9f5f959a4a
SHA512

1f8f82d5f13a4a515ca9185fa4a4bb516091477024a756b62c02be17007437d1f34471ceb7026f6d1f84d6d7f3d27534b46a72a263175a63ddaa562b5ec57716
SSDEEP

49152:1mlSfemiOhG930nd63n2PV5KTB8NifZwmtP:1Xfe464cGAff/tP

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  QQPCDownload1600.exe
- Size
  
  2.1MB
- MD5
  
  99c06b6a63a5aa0bd87e45177f168b66
- SHA1
  
  b5d2ed611560a4b011269d82f19a6ce7bddd70fb
- SHA256
  
  66267b30f43c6611c112b686dd04391ee18a2ede756abfd77deffe9f5f959a4a
- SHA512
  
  1f8f82d5f13a4a515ca9185fa4a4bb516091477024a756b62c02be17007437d1f34471ceb7026f6d1f84d6d7f3d27534b46a72a263175a63ddaa562b5ec57716
- SSDEEP
  
  49152:1mlSfemiOhG930nd63n2PV5KTB8NifZwmtP:1Xfe464cGAff/tP
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence