8f87d4d79aaf451e4706832d07e8145cfb2f2f26b46c572c3ec31d4098ce9f89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f87d4d79aaf451e4706832d07e8145cfb2f2f26b46c572c3ec31d4098ce9f89
Size

1.1MB
Sample

240511-ntgelahd37
MD5

d987fb6f91354e0f3b5c713cc8ecf298
SHA1

0db3565de533b2f60ed67f343786c3bd1bf6c9b5
SHA256

8f87d4d79aaf451e4706832d07e8145cfb2f2f26b46c572c3ec31d4098ce9f89
SHA512

a95003f2bc3872577340d9be504b766ce2ef9674bde653afec8e1621d500b65aa785dd340b8c91c5a0e3a9729b6e88e2f1422af13f9920cc83d2c2d52871e0c4
SSDEEP

24576:nPeGXYP3lOi7b6mdJfCZIP4AbX5CN/aXfWWCGCPN:nPd8V8yAUX50Wed

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  8f87d4d79aaf451e4706832d07e8145cfb2f2f26b46c572c3ec31d4098ce9f89
- Size
  
  1.1MB
- MD5
  
  d987fb6f91354e0f3b5c713cc8ecf298
- SHA1
  
  0db3565de533b2f60ed67f343786c3bd1bf6c9b5
- SHA256
  
  8f87d4d79aaf451e4706832d07e8145cfb2f2f26b46c572c3ec31d4098ce9f89
- SHA512
  
  a95003f2bc3872577340d9be504b766ce2ef9674bde653afec8e1621d500b65aa785dd340b8c91c5a0e3a9729b6e88e2f1422af13f9920cc83d2c2d52871e0c4
- SSDEEP
  
  24576:nPeGXYP3lOi7b6mdJfCZIP4AbX5CN/aXfWWCGCPN:nPd8V8yAUX50Wed
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence