ad296e9873896ca5eaf72457a0a57b5abeb709feec89b615e5496787d86b8575 | Triage

Sharing

General

Target

MBRGay (red).exe
Size

47KB
Sample

240524-crbksahg7z
MD5

df3149c1d5ac6d561b825301c9b8eb27
SHA1

864172e201ad47c157785e676ba62a9c4e30fbb1
SHA256

ad296e9873896ca5eaf72457a0a57b5abeb709feec89b615e5496787d86b8575
SHA512

f0fea189994b59f1dc5ee5b4f5fd5b8657e926727d9b2bcac498866906adb0d861d97ead69e14f159d61e19832d27fafac7a17a470d26c36a4a9b903f1530df9
SSDEEP

768:9yLqzcQ8zwtHEBbGoaPbs9IKRQ5qo2GLQdJzb4ztOyjg5YCtKO:cLqzcQ5kJxWpKRfzdJSIyjg57K

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  MBRGay (red).exe
- Size
  
  47KB
- MD5
  
  df3149c1d5ac6d561b825301c9b8eb27
- SHA1
  
  864172e201ad47c157785e676ba62a9c4e30fbb1
- SHA256
  
  ad296e9873896ca5eaf72457a0a57b5abeb709feec89b615e5496787d86b8575
- SHA512
  
  f0fea189994b59f1dc5ee5b4f5fd5b8657e926727d9b2bcac498866906adb0d861d97ead69e14f159d61e19832d27fafac7a17a470d26c36a4a9b903f1530df9
- SSDEEP
  
  768:9yLqzcQ8zwtHEBbGoaPbs9IKRQ5qo2GLQdJzb4ztOyjg5YCtKO:cLqzcQ5kJxWpKRfzdJSIyjg57K
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence