General
-
Target
GearUP-2.3.0-win.exe
-
Size
58.1MB
-
Sample
240521-t3r6cabh9y
-
MD5
6087e8a5f12e1a6ab612a9f07565ffaf
-
SHA1
e8cea6b3efa2713d0b3c04d1b9c00d5e43b6db89
-
SHA256
5ec01eb4511185582f3d34af1edd093a86d3f920602df198127dc826745bb4ec
-
SHA512
8624d17a90d9e0a0ec29e54a8cd9bcc3f874704b888a55bf25b7167a9b30d6dfe2ebbabcd4551eb0b9ae78de78358082e79bb39a4c2a49d2dc76df3f59585b45
-
SSDEEP
1572864:eEKNLIzoQe7J5zmeCungo+kfhURMcklGtSoC:SK0QgGTF9SF
Malware Config
Targets
-
-
Target
GearUP-2.3.0-win.exe
-
Size
58.1MB
-
MD5
6087e8a5f12e1a6ab612a9f07565ffaf
-
SHA1
e8cea6b3efa2713d0b3c04d1b9c00d5e43b6db89
-
SHA256
5ec01eb4511185582f3d34af1edd093a86d3f920602df198127dc826745bb4ec
-
SHA512
8624d17a90d9e0a0ec29e54a8cd9bcc3f874704b888a55bf25b7167a9b30d6dfe2ebbabcd4551eb0b9ae78de78358082e79bb39a4c2a49d2dc76df3f59585b45
-
SSDEEP
1572864:eEKNLIzoQe7J5zmeCungo+kfhURMcklGtSoC:SK0QgGTF9SF
Score8/10-
Drops file in Drivers directory
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Pre-OS Boot
1Bootkit
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1