General

  • Target

    d351313538ae92ae3398f8ffe5bbde20_NEAS

  • Size

    3.4MB

  • Sample

    240507-r8fcmabh7v

  • MD5

    d351313538ae92ae3398f8ffe5bbde20

  • SHA1

    11a5a27edc1ed918ea24503ba271df67dd768274

  • SHA256

    0442ba3ab3cc1d5d9da9c2ba763974035afa1bab2cf162a3e37641923d058057

  • SHA512

    08b560c3534285d6d291e2901a5f40a9400cbb45070f3a051a7bcbae9a091e48b412141f0bfdded160071fa733aea38839c9a775014bb40d179ee04a8c027433

  • SSDEEP

    49152:yG0ndClwT/ICuDHwb0X3nbCmB3sCr3YHV:yG0ndClXHQSeiLrGV

Malware Config

Targets

    • Target

      d351313538ae92ae3398f8ffe5bbde20_NEAS

    • Size

      3.4MB

    • MD5

      d351313538ae92ae3398f8ffe5bbde20

    • SHA1

      11a5a27edc1ed918ea24503ba271df67dd768274

    • SHA256

      0442ba3ab3cc1d5d9da9c2ba763974035afa1bab2cf162a3e37641923d058057

    • SHA512

      08b560c3534285d6d291e2901a5f40a9400cbb45070f3a051a7bcbae9a091e48b412141f0bfdded160071fa733aea38839c9a775014bb40d179ee04a8c027433

    • SSDEEP

      49152:yG0ndClwT/ICuDHwb0X3nbCmB3sCr3YHV:yG0ndClXHQSeiLrGV

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks