General
-
Target
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06
-
Size
2.4MB
-
Sample
240525-vmfytabg89
-
MD5
bd68c68a0522dd3c79bd7ec8a115d3e7
-
SHA1
14bb4587a1bf2e59610c278eabd50ac9c94633c3
-
SHA256
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06
-
SHA512
9fd0977cbf1e32988999fa75547b875db5c0ddf220ade92c7de98ab645a3b984e5f422494b2ec0726b49840d20df79c9b303e6f9cfec932d4deb8e56043034e6
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJF:J+Qf7cqA0bt2rK09cohiLUbQJJF
Static task
static1
Behavioral task
behavioral1
Sample
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06
-
Size
2.4MB
-
MD5
bd68c68a0522dd3c79bd7ec8a115d3e7
-
SHA1
14bb4587a1bf2e59610c278eabd50ac9c94633c3
-
SHA256
4a007d11eb287b0a8a4dfd64bb6744eea6e66bc42cc7073c536760691d8a5c06
-
SHA512
9fd0977cbf1e32988999fa75547b875db5c0ddf220ade92c7de98ab645a3b984e5f422494b2ec0726b49840d20df79c9b303e6f9cfec932d4deb8e56043034e6
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJF:J+Qf7cqA0bt2rK09cohiLUbQJJF
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-