General

  • Target

    457e98f60801cb9c4d344722ff6eb230bc56e016d96d4d5cd07a9ecdf4c29f91

  • Size

    6.0MB

  • Sample

    240526-endl3sec8y

  • MD5

    db2f81022aa778a94399b7d958a6ddc9

  • SHA1

    ee0db450f30e20728550a7e952fc572b88671760

  • SHA256

    457e98f60801cb9c4d344722ff6eb230bc56e016d96d4d5cd07a9ecdf4c29f91

  • SHA512

    ba38f4f8f48b5a20adae1df39246ab3c281dca3f289ce3a06fc9a136c624f04417518fbfa1acc7dd0e885bcb82e1c990d0f828aa0328f6b4009278077d74a5d3

  • SSDEEP

    98304:fbdhDqohDS1F+CRcB27OgUWZHw8VQjr+/bJBAUZLT:fbdhDD23a2sWKjr+TJVH

Malware Config

Targets

    • Target

      457e98f60801cb9c4d344722ff6eb230bc56e016d96d4d5cd07a9ecdf4c29f91

    • Size

      6.0MB

    • MD5

      db2f81022aa778a94399b7d958a6ddc9

    • SHA1

      ee0db450f30e20728550a7e952fc572b88671760

    • SHA256

      457e98f60801cb9c4d344722ff6eb230bc56e016d96d4d5cd07a9ecdf4c29f91

    • SHA512

      ba38f4f8f48b5a20adae1df39246ab3c281dca3f289ce3a06fc9a136c624f04417518fbfa1acc7dd0e885bcb82e1c990d0f828aa0328f6b4009278077d74a5d3

    • SSDEEP

      98304:fbdhDqohDS1F+CRcB27OgUWZHw8VQjr+/bJBAUZLT:fbdhDD23a2sWKjr+TJVH

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Modify Registry

1
T1112

Discovery

System Information Discovery

1
T1082

Tasks