General
-
Target
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d
-
Size
2.4MB
-
Sample
240525-vqak7sbe2z
-
MD5
357178c2aea68353a220957e1f5aa73a
-
SHA1
ee3673c7e77cef10e122c39b4997cd247d443605
-
SHA256
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d
-
SHA512
002b5b1a1d1cef983c0f7e475b52461fa5d33ceb18023a2aa91f7f684cd7dfe5a4ffe3c3f0982f113c4480ed7d28d07082260df3ac4e8be8ed66ed86897e5e87
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJ4:J+Qf7cqA0bt2rK09cohiLUbQJJ4
Static task
static1
Behavioral task
behavioral1
Sample
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d
-
Size
2.4MB
-
MD5
357178c2aea68353a220957e1f5aa73a
-
SHA1
ee3673c7e77cef10e122c39b4997cd247d443605
-
SHA256
0ad4d816c1d0c42369d56b7580dc3398703ecb105ca436a6246794c7029efa3d
-
SHA512
002b5b1a1d1cef983c0f7e475b52461fa5d33ceb18023a2aa91f7f684cd7dfe5a4ffe3c3f0982f113c4480ed7d28d07082260df3ac4e8be8ed66ed86897e5e87
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJ4:J+Qf7cqA0bt2rK09cohiLUbQJJ4
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-