Overview

overview

6

Static

static

1

cpu-z_2.09-en.exe

windows7-x64

6

cpu-z_2.09-en.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cpu-z_2.09-en.exe

  • Size

    2.1MB

  • Sample

    240420-aftacaca3v

  • MD5

    f1ce59f81de106aa0ca4672e5971c6f2

  • SHA1

    21d9ca7a12479a0ec2af4f1c567489a1192b7a21

  • SHA256

    657b7f4e403269768cd20f1a5b481878cecc775522ceef119b2723e0844f2361

  • SHA512

    0e77a515b35ee33a9d7e887f1e8bf0b243d0b2a5168c471b2b66c5345b31b690bca81bd392f086b129070db68fe7d3d79647fe07f2657ebc6fdf8acaa8677a71

  • SSDEEP

    49152:5ycMB7U8FZ5HJrEJuqZfvLmDBjovzNdqO2qdbtAKolp:kcOUctouKfvLmljovzyUtfolp

Score
6/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      cpu-z_2.09-en.exe

    • Size

      2.1MB

    • MD5

      f1ce59f81de106aa0ca4672e5971c6f2

    • SHA1

      21d9ca7a12479a0ec2af4f1c567489a1192b7a21

    • SHA256

      657b7f4e403269768cd20f1a5b481878cecc775522ceef119b2723e0844f2361

    • SHA512

      0e77a515b35ee33a9d7e887f1e8bf0b243d0b2a5168c471b2b66c5345b31b690bca81bd392f086b129070db68fe7d3d79647fe07f2657ebc6fdf8acaa8677a71

    • SSDEEP

      49152:5ycMB7U8FZ5HJrEJuqZfvLmDBjovzNdqO2qdbtAKolp:kcOUctouKfvLmljovzyUtfolp

    Score
    6/10
    bootkitdiscoverypersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks