hxxps://github[.]com/MalwareStudio?page=1&tab=repositories | Triage

Submit
Reports

Overview

overview

8

Static

static

1

URLScan

urlscan

https://github.com/M...

windows10-1703-x64

8

Resubmissions

26-04-2024 19:32

240426-x87d1aaf29 1

26-04-2024 19:30

240426-x723wsbd7v 8

26-04-2024 19:24

240426-x4h6lsbc8x 8

Sharing

General

Target

https://github.com/MalwareStudio?page=1&tab=repositories
Sample

240426-x4h6lsbc8x

Score

8^/10

bootkit discovery exploit persistence

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://github.com/MalwareStudio?page=1&tab=repositories

Resource

win10-20240404-en

bootkit discovery exploit persistence

windows10-1703-x64

16 signatures

1800 seconds

Malware Config

Targets

- Target
  
  https://github.com/MalwareStudio?page=1&tab=repositories
Score

8^/10

bootkit discovery exploit persistence
- Possible privilege escalation attempt
  exploit
- Executes dropped EXE
- Modifies file permissions
  discovery
- Legitimate hosting services abused for malware hosting/C2
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

urlscan1

behavioral1

bootkitdiscoveryexploitpersistence

© 2018-2024

Terms | Privacy