Overview

overview

6

Static

static

1

saved.png

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    saved.png

  • Size

    421KB

  • Sample

    240526-298exagf65

  • MD5

    40d824e7b0afe8645ebac69fc93d1d4a

  • SHA1

    7aee84f12c2342d77cba5c1f81cbfc6147e306e9

  • SHA256

    f6b9618ff245f6cc389cb24a09cc19a77e7e592c01b3fec6966d72992bb1a8f9

  • SHA512

    eab5793c671ae41ac3218772dac863ea6c09ab816b1a09001944bea98646031b675130b4295c5bf486788a2d0b1362af3b9e79175a9635c64828115e0dd993db

  • SSDEEP

    12288:eRBcLfLiyAJ3X1brmPc2Y+pDgqM5rzAFGeND:erUWRJn1bKPqkDgqMlU

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      saved.png

    • Size

      421KB

    • MD5

      40d824e7b0afe8645ebac69fc93d1d4a

    • SHA1

      7aee84f12c2342d77cba5c1f81cbfc6147e306e9

    • SHA256

      f6b9618ff245f6cc389cb24a09cc19a77e7e592c01b3fec6966d72992bb1a8f9

    • SHA512

      eab5793c671ae41ac3218772dac863ea6c09ab816b1a09001944bea98646031b675130b4295c5bf486788a2d0b1362af3b9e79175a9635c64828115e0dd993db

    • SSDEEP

      12288:eRBcLfLiyAJ3X1brmPc2Y+pDgqM5rzAFGeND:erUWRJn1bKPqkDgqMlU

    Score
    6/10
    bootkitpersistence

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks