Overview

overview

7

Static

static

3

2d2b3353a0...c5.exe

windows7-x64

7

2d2b3353a0...c5.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d2b3353a0601cc6ac21723c6ee7646986b5c04ab2a997beeb00f49c4c795fc5

  • Size

    11.4MB

  • Sample

    240525-2mlbvsdg62

  • MD5

    a9d62ee5d5a186ea24e211adcdf19f9c

  • SHA1

    b2f785840347ab0e34af92fa35c5a4a62041cbdc

  • SHA256

    2d2b3353a0601cc6ac21723c6ee7646986b5c04ab2a997beeb00f49c4c795fc5

  • SHA512

    66804d18c0ca11412824befef1ac8178b2d6d97547750fe4e3ba4613b3c502354eaa99c8c09b52f5e0ffad3972d2ef8a35a91f91def73017d48a3cef5eaf29b3

  • SSDEEP

    196608:urX/gauksEYjBVp9AklvD0SVHSQzGSsuPM/WGYtIsFQxrufpLJV4:Mg5FEYfp9AUHDau0/WGWUNuto

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      2d2b3353a0601cc6ac21723c6ee7646986b5c04ab2a997beeb00f49c4c795fc5

    • Size

      11.4MB

    • MD5

      a9d62ee5d5a186ea24e211adcdf19f9c

    • SHA1

      b2f785840347ab0e34af92fa35c5a4a62041cbdc

    • SHA256

      2d2b3353a0601cc6ac21723c6ee7646986b5c04ab2a997beeb00f49c4c795fc5

    • SHA512

      66804d18c0ca11412824befef1ac8178b2d6d97547750fe4e3ba4613b3c502354eaa99c8c09b52f5e0ffad3972d2ef8a35a91f91def73017d48a3cef5eaf29b3

    • SSDEEP

      196608:urX/gauksEYjBVp9AklvD0SVHSQzGSsuPM/WGYtIsFQxrufpLJV4:Mg5FEYfp9AUHDau0/WGWUNuto

    Score
    7/10
    bootkitpersistence

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks