5d213f6c0f26efd9f51deeb0524cbd05dc39a5bb7e0dcfc1c28a1d00cf41454f | Triage

Sharing

General

Target

5d213f6c0f26efd9f51deeb0524cbd05dc39a5bb7e0dcfc1c28a1d00cf41454f
Size

627KB
Sample

240418-2ly7bsgh75
MD5

032bb916e00c9b0c55ca8318b60b8eb3
SHA1

d7a20325cd7cc53f01975a6ec4c210c8fd125cc2
SHA256

5d213f6c0f26efd9f51deeb0524cbd05dc39a5bb7e0dcfc1c28a1d00cf41454f
SHA512

794eb4f12082a40d3f7f375bae669d0471d1bca2a845e941c94ffdfd4da7354d1f4c2c5e7c02de21d3d191160d129ec80369ac14963b1b51a8b8c4a7c702caea
SSDEEP

12288:bMExor1L6NtakDF00zbVTWSvDeFlnjl9CT:/ar1L4takDi0dTxe7xG

Score

10^/10

bootkit persistence

Malware Config

Targets

- Target
  
  5d213f6c0f26efd9f51deeb0524cbd05dc39a5bb7e0dcfc1c28a1d00cf41454f
- Size
  
  627KB
- MD5
  
  032bb916e00c9b0c55ca8318b60b8eb3
- SHA1
  
  d7a20325cd7cc53f01975a6ec4c210c8fd125cc2
- SHA256
  
  5d213f6c0f26efd9f51deeb0524cbd05dc39a5bb7e0dcfc1c28a1d00cf41454f
- SHA512
  
  794eb4f12082a40d3f7f375bae669d0471d1bca2a845e941c94ffdfd4da7354d1f4c2c5e7c02de21d3d191160d129ec80369ac14963b1b51a8b8c4a7c702caea
- SSDEEP
  
  12288:bMExor1L6NtakDF00zbVTWSvDeFlnjl9CT:/ar1L4takDi0dTxe7xG
Score

10^/10

bootkit persistence
- Pitou
  Pitou.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence