General
-
Target
MEMZ-virus
-
Size
216KB
-
Sample
240508-xftmfahf8s
-
MD5
f18a1785e0db605393827a3933978670
-
SHA1
f142f695bc274d86939d74a28362730eff27cf03
-
SHA256
034dc2b3c17ba34582a0f03339fef6bc9c797bfc039062d30811ebed526b200b
-
SHA512
7cccd96e98142d2e79c238cb8fa53ce17b4f7e11b2a9666fbb342bd1abc72133e30253276abfe13bcf5184e558913d41091967a9b304003d74a29a18b313b42e
-
SSDEEP
6144:9UQ4e2n9ddKM2vkm0aWyRv3b9CvZJT3CqbMrhryfQNRPaCieMjAkvCJv1Vi0Z6tN:qQ4e2n9ddKM2vkm0aWyRv3b9CvZJT3Ci
Static task
static1
Behavioral task
behavioral1
Sample
MEMZ-virus
Resource
win10-20240404-en
Behavioral task
behavioral2
Sample
MEMZ-virus
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
MEMZ-virus
Resource
win11-20240419-en
Malware Config
Targets
-
-
Target
MEMZ-virus
-
Size
216KB
-
MD5
f18a1785e0db605393827a3933978670
-
SHA1
f142f695bc274d86939d74a28362730eff27cf03
-
SHA256
034dc2b3c17ba34582a0f03339fef6bc9c797bfc039062d30811ebed526b200b
-
SHA512
7cccd96e98142d2e79c238cb8fa53ce17b4f7e11b2a9666fbb342bd1abc72133e30253276abfe13bcf5184e558913d41091967a9b304003d74a29a18b313b42e
-
SSDEEP
6144:9UQ4e2n9ddKM2vkm0aWyRv3b9CvZJT3CqbMrhryfQNRPaCieMjAkvCJv1Vi0Z6tN:qQ4e2n9ddKM2vkm0aWyRv3b9CvZJT3Ci
Score7/10-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-