0c59a30d494c0b522331f37c11b3b93352dd81c2d93b38ca23544751eb03ab71 | Triage

Sharing

General

Target

0c59a30d494c0b522331f37c11b3b93352dd81c2d93b38ca23544751eb03ab71
Size

4.8MB
Sample

240523-bpy3mage26
MD5

33ff73e69affc489bec7df69b59c7657
SHA1

65d5036e14f3df79361ff70b20b49ed51b274011
SHA256

0c59a30d494c0b522331f37c11b3b93352dd81c2d93b38ca23544751eb03ab71
SHA512

685cb75c3042b1b0fe781b4a22ea6204cb1cf43ac915a11f7c3e83ffaa38a79070269c04642e6ef3776c71e88c7c80c083ea593812fd339a7ed1df1a49ef5001
SSDEEP

98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aX9:TcmZl85gyjovK65E8ob5Sx8aX9

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  0c59a30d494c0b522331f37c11b3b93352dd81c2d93b38ca23544751eb03ab71
- Size
  
  4.8MB
- MD5
  
  33ff73e69affc489bec7df69b59c7657
- SHA1
  
  65d5036e14f3df79361ff70b20b49ed51b274011
- SHA256
  
  0c59a30d494c0b522331f37c11b3b93352dd81c2d93b38ca23544751eb03ab71
- SHA512
  
  685cb75c3042b1b0fe781b4a22ea6204cb1cf43ac915a11f7c3e83ffaa38a79070269c04642e6ef3776c71e88c7c80c083ea593812fd339a7ed1df1a49ef5001
- SSDEEP
  
  98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aX9:TcmZl85gyjovK65E8ob5Sx8aX9
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence