Overview

overview

6

Static

static

1

.html

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    .

  • Size

    20KB

  • Sample

    240521-q4z1ssgb35

  • MD5

    cb7b5817a7e3867065dd941202c92895

  • SHA1

    86bc42a4a5c86ce947518ebfe6c8bbab3e728749

  • SHA256

    c23b717bbf832a9f3c92be95c409c9fe862a526e5387839701d108642a2005f7

  • SHA512

    5e7dc510b6ea6efeafacbb4c231cf727c7e03af848440c9d207249307c412e489197a1591a20a145fb997061ef08fcdc958c543ee760cc9c069228d1daec0098

  • SSDEEP

    384:r7R6CjDpmReVoOs47i9ylKeGMBU8HhhbBiXCt7zo2paWhOwob06+rIJCgMmV6:r16CjBVoOs47myI1MlBhb0OyWhOwob0z

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      .

    • Size

      20KB

    • MD5

      cb7b5817a7e3867065dd941202c92895

    • SHA1

      86bc42a4a5c86ce947518ebfe6c8bbab3e728749

    • SHA256

      c23b717bbf832a9f3c92be95c409c9fe862a526e5387839701d108642a2005f7

    • SHA512

      5e7dc510b6ea6efeafacbb4c231cf727c7e03af848440c9d207249307c412e489197a1591a20a145fb997061ef08fcdc958c543ee760cc9c069228d1daec0098

    • SSDEEP

      384:r7R6CjDpmReVoOs47i9ylKeGMBU8HhhbBiXCt7zo2paWhOwob06+rIJCgMmV6:r16CjBVoOs47myI1MlBhb0OyWhOwob0z

    Score
    6/10
    bootkitpersistence

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks