Overview

overview

7

Static

static

7

d65ead70b2...85.exe

windows7-x64

7

d65ead70b2...85.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d65ead70b2fa87eed10a9a5d306c9185

  • Size

    200KB

  • Sample

    240319-r2ms5afb4x

  • MD5

    d65ead70b2fa87eed10a9a5d306c9185

  • SHA1

    921e941cb0c242219db4b083d090fdeea4ce9e8d

  • SHA256

    4306e5505124b31626542b919a57f28084800a6388a3d402b50aecfe111780ab

  • SHA512

    f70c826a62937f976ed4aaa1d9a5e38a63514fe6fc5048a241893cf254dd756ffa96c68ac46086d8d1ab9f9fc8ade45e32c5a29b184d8b5edfe27b6754c716f0

  • SSDEEP

    6144:J7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfR0gA:J78AqbaVcmAo7cGNpwCi+eQZJA

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      d65ead70b2fa87eed10a9a5d306c9185

    • Size

      200KB

    • MD5

      d65ead70b2fa87eed10a9a5d306c9185

    • SHA1

      921e941cb0c242219db4b083d090fdeea4ce9e8d

    • SHA256

      4306e5505124b31626542b919a57f28084800a6388a3d402b50aecfe111780ab

    • SHA512

      f70c826a62937f976ed4aaa1d9a5e38a63514fe6fc5048a241893cf254dd756ffa96c68ac46086d8d1ab9f9fc8ade45e32c5a29b184d8b5edfe27b6754c716f0

    • SSDEEP

      6144:J7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfR0gA:J78AqbaVcmAo7cGNpwCi+eQZJA

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks