General
-
Target
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708.exe
-
Size
932KB
-
Sample
240509-b5tsvaeb55
-
MD5
ceedc88cac2f50fe515194a39d4f3175
-
SHA1
8d2480aacd496424664bc363c98235c3a7077371
-
SHA256
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708
-
SHA512
329974caab9955c0370dab0a4724c46c61fe21d640ea49dbe7d66e0987e4f67ff98a28e65c3e38d2891ce89229db9d74fda0fed8b285f50fd7d0be467120b27f
-
SSDEEP
12288:MOQNMIt3+hioijxOcaGW/v7ECEfvnJUC2+6zI4cHkYaG6U5SqFS4609bCFrZd:LWMIMhiop+4w3fvT2dMINbU5zFQmUz
Static task
static1
Behavioral task
behavioral1
Sample
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708.exe
-
Size
932KB
-
MD5
ceedc88cac2f50fe515194a39d4f3175
-
SHA1
8d2480aacd496424664bc363c98235c3a7077371
-
SHA256
864058982beb96e66a925b7eb77b7add2ced0e27d95391ec80c3fba56f95f708
-
SHA512
329974caab9955c0370dab0a4724c46c61fe21d640ea49dbe7d66e0987e4f67ff98a28e65c3e38d2891ce89229db9d74fda0fed8b285f50fd7d0be467120b27f
-
SSDEEP
12288:MOQNMIt3+hioijxOcaGW/v7ECEfvnJUC2+6zI4cHkYaG6U5SqFS4609bCFrZd:LWMIMhiop+4w3fvT2dMINbU5zFQmUz
Score9/10-
Detects Windows exceutables bypassing UAC using CMSTP COM interfaces. MITRE (T1218.003)
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-