Overview

overview

6

Static

static

1

2024-04-20...ia.exe

windows7-x64

6

2024-04-20...ia.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-20_dabadfba992c0ed5b5035adc866e901d_karagany_mafia

  • Size

    1.6MB

  • Sample

    240420-h13crabd28

  • MD5

    dabadfba992c0ed5b5035adc866e901d

  • SHA1

    436c4d0dd8b4c7ed90614b027d72aa71992fe9a9

  • SHA256

    c119c8e23bfc2044bbd902ba4633ca80d1b5881c6459a56adc87846c5100c508

  • SHA512

    7c88e207d72e8e03deaba3c84ca009057a46c00141bce04e376b586bbd5fefed4963a1ef2cc7fc335301b5c0d9cda4e96f8371fb14edca1815438f10116d4bb0

  • SSDEEP

    24576:4nD2ecdSF681s5vg987LzYqXdKLBvkupIcbS6Txv7ML9/qvs4igYF:gFU5I987LFXdKLiWIce6TVML9ZM0

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      2024-04-20_dabadfba992c0ed5b5035adc866e901d_karagany_mafia

    • Size

      1.6MB

    • MD5

      dabadfba992c0ed5b5035adc866e901d

    • SHA1

      436c4d0dd8b4c7ed90614b027d72aa71992fe9a9

    • SHA256

      c119c8e23bfc2044bbd902ba4633ca80d1b5881c6459a56adc87846c5100c508

    • SHA512

      7c88e207d72e8e03deaba3c84ca009057a46c00141bce04e376b586bbd5fefed4963a1ef2cc7fc335301b5c0d9cda4e96f8371fb14edca1815438f10116d4bb0

    • SSDEEP

      24576:4nD2ecdSF681s5vg987LzYqXdKLBvkupIcbS6Txv7ML9/qvs4igYF:gFU5I987LFXdKLiWIce6TVML9ZM0

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks