Overview

overview

6

Static

static

3

ffc435a406...39.exe

windows7-x64

6

ffc435a406...39.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ffc435a406c81a37c26174981ef9ca771879e81b979fb30269d717fb06a7af39

  • Size

    611KB

  • Sample

    240419-tsahjshg6t

  • MD5

    edeb51340e4c5609358cf94bf20d3b5d

  • SHA1

    869a78ed033115ed99e64121a7111175019a0eca

  • SHA256

    ffc435a406c81a37c26174981ef9ca771879e81b979fb30269d717fb06a7af39

  • SHA512

    d1aebc935c383c0fa58529a2ce797470140007a64b0d326e3db020a90ba7e9f2601f15a8d8b3c4174a94b1909f100bcf7d4a093ba9b85ddb1f5adbbf076f1257

  • SSDEEP

    12288:GHCeyf3JfxdcAlNvSO6+3i3Axn/gZaochWeNe:GHg3dcAlNB6+0W/gZazIke

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      ffc435a406c81a37c26174981ef9ca771879e81b979fb30269d717fb06a7af39

    • Size

      611KB

    • MD5

      edeb51340e4c5609358cf94bf20d3b5d

    • SHA1

      869a78ed033115ed99e64121a7111175019a0eca

    • SHA256

      ffc435a406c81a37c26174981ef9ca771879e81b979fb30269d717fb06a7af39

    • SHA512

      d1aebc935c383c0fa58529a2ce797470140007a64b0d326e3db020a90ba7e9f2601f15a8d8b3c4174a94b1909f100bcf7d4a093ba9b85ddb1f5adbbf076f1257

    • SSDEEP

      12288:GHCeyf3JfxdcAlNvSO6+3i3Axn/gZaochWeNe:GHg3dcAlNB6+0W/gZazIke

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks