General
-
Target
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db
-
Size
2.4MB
-
Sample
240525-vrftlsbe5w
-
MD5
2cd650848b8ed89292118ec352cffb8a
-
SHA1
483311cf57f4277bf508beb1a22c13f1be396621
-
SHA256
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db
-
SHA512
9a07e289405180e4dea6cadfec7dba1f6a1e82a0bf0f32112fe23e641604a7121c0c0067762e138237686a31b7badb5c0955f23ec41d681b3cd8d47ab2857a00
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJO:J+Qf7cqA0bt2rK09cohiLUbQJJO
Static task
static1
Behavioral task
behavioral1
Sample
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db
-
Size
2.4MB
-
MD5
2cd650848b8ed89292118ec352cffb8a
-
SHA1
483311cf57f4277bf508beb1a22c13f1be396621
-
SHA256
655547df4376249872af0ac25dc35b9c8c33fbf261a2c16c6510d20ec2fdb8db
-
SHA512
9a07e289405180e4dea6cadfec7dba1f6a1e82a0bf0f32112fe23e641604a7121c0c0067762e138237686a31b7badb5c0955f23ec41d681b3cd8d47ab2857a00
-
SSDEEP
49152:JoNgRf9tTkvqHWzKVcBd6o6nt2rK09G4lyo0ZacSiLUswRI/CIJO:J+Qf7cqA0bt2rK09cohiLUbQJJO
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-