2deb63b24bed02c110032a65a9ba8728c4307c11ace1150b8e1453d5b21a710c | Triage

Submit
Reports

Overview

overview

6

Static

static

1

AUTORUN.inf

windows11-21h2-x64

Sharing

General

Target

AUTORUN.inf
Size

46B
Sample

240420-ttl8qsch6w
MD5

2426842e680a5abd4d0f739aa96a330e
SHA1

65b9f8934fc47f6c69d7ea065c1f480dea7c772f
SHA256

2deb63b24bed02c110032a65a9ba8728c4307c11ace1150b8e1453d5b21a710c
SHA512

34347925c35e2925142ccd87d39805786a21ae1a9260d70faa9cb4f624749647b349fac044e1776206f7b2f8f84733ebc56a3a952e60c590aeb3fb0fac6b0093

Score

6^/10

bootkit persistence

Static task

static1

Behavioral task

behavioral1

Sample

AUTORUN.inf

Resource

win11-20240412-en

bootkit persistence

windows11-21h2-x64

16 signatures

1800 seconds

Malware Config

Targets

- Target
  
  AUTORUN.inf
- Size
  
  46B
- MD5
  
  2426842e680a5abd4d0f739aa96a330e
- SHA1
  
  65b9f8934fc47f6c69d7ea065c1f480dea7c772f
- SHA256
  
  2deb63b24bed02c110032a65a9ba8728c4307c11ace1150b8e1453d5b21a710c
- SHA512
  
  34347925c35e2925142ccd87d39805786a21ae1a9260d70faa9cb4f624749647b349fac044e1776206f7b2f8f84733ebc56a3a952e60c590aeb3fb0fac6b0093
Score

6^/10

bootkit persistence
- Legitimate hosting services abused for malware hosting/C2
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

© 2018-2024

Terms | Privacy