c8d871db88fe7e80b9463723a2a21354fb9ae09b51b1582c90a67b8c2cd7c082 | Triage

Sharing

General

Target

c8d871db88fe7e80b9463723a2a21354fb9ae09b51b1582c90a67b8c2cd7c082
Size

567KB
Sample

240418-25a9lshe79
MD5

58c170c5652d7cb0c0e5a942ee4d6cfa
SHA1

d7d81816a10a0036c5cc2df5e78366bcd3c4ddd4
SHA256

c8d871db88fe7e80b9463723a2a21354fb9ae09b51b1582c90a67b8c2cd7c082
SHA512

4d99383dc469001d90e19b7bff7ec87594fe3b0b3684c8e1f3efa982bc111553b8c39a3cff95819314c345f70a961e0a17c00e429f5ecae6fd8e41141bf6440c
SSDEEP

12288:FSL69zs1DwJ2Y+SDBeBUlEUtxrGNZMgOspvLBJRa5c:Fd9zs1DhY+QYuEUmZMULV

Score

10^/10

bootkit persistence

Malware Config

Targets

- Target
  
  c8d871db88fe7e80b9463723a2a21354fb9ae09b51b1582c90a67b8c2cd7c082
- Size
  
  567KB
- MD5
  
  58c170c5652d7cb0c0e5a942ee4d6cfa
- SHA1
  
  d7d81816a10a0036c5cc2df5e78366bcd3c4ddd4
- SHA256
  
  c8d871db88fe7e80b9463723a2a21354fb9ae09b51b1582c90a67b8c2cd7c082
- SHA512
  
  4d99383dc469001d90e19b7bff7ec87594fe3b0b3684c8e1f3efa982bc111553b8c39a3cff95819314c345f70a961e0a17c00e429f5ecae6fd8e41141bf6440c
- SSDEEP
  
  12288:FSL69zs1DwJ2Y+SDBeBUlEUtxrGNZMgOspvLBJRa5c:Fd9zs1DhY+QYuEUmZMULV
Score

10^/10

bootkit persistence
- Pitou
  Pitou.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence