General
-
Target
sample
-
Size
223KB
-
Sample
240420-b24tmsea5w
-
MD5
ad27eceeae213af0776d2117b34596e9
-
SHA1
263da3e1bb27308363e9a4a155edbf337aea3db8
-
SHA256
c453c973a751ac4762242244d0dadc2ea4d57739b7d883a7e7d0aa0358108728
-
SHA512
f2e38461d71d7120d4cabb5a43e89e8ca13656cda5ef784d93eeeaac136cc3d09dcdc34b0b0a78b77492015d1609f8333e26b000e3b8880c56a1ea039f054206
-
SSDEEP
6144:2DuqJqjQ+0VSgE29xxskm0nayRo3v9qvZJT3CqbMrhryfQNRPaCieMjAkvCJv1VP:1jQ+0VSgE29xxskm0nayRo3v9qvZJT3s
Malware Config
Targets
-
-
Target
sample
-
Size
223KB
-
MD5
ad27eceeae213af0776d2117b34596e9
-
SHA1
263da3e1bb27308363e9a4a155edbf337aea3db8
-
SHA256
c453c973a751ac4762242244d0dadc2ea4d57739b7d883a7e7d0aa0358108728
-
SHA512
f2e38461d71d7120d4cabb5a43e89e8ca13656cda5ef784d93eeeaac136cc3d09dcdc34b0b0a78b77492015d1609f8333e26b000e3b8880c56a1ea039f054206
-
SSDEEP
6144:2DuqJqjQ+0VSgE29xxskm0nayRo3v9qvZJT3CqbMrhryfQNRPaCieMjAkvCJv1VP:1jQ+0VSgE29xxskm0nayRo3v9qvZJT3s
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-