General
-
Target
deca524c9b3b388167ce7b12fd731f456c8164621cb447133134ad4d1b8d64b8
-
Size
1.6MB
-
Sample
240526-jel93sbd5y
-
MD5
15fdfb61c3bcf26af3548d7fade4a8ae
-
SHA1
d76af19cc583ea66d0caa943a9593761c19dd020
-
SHA256
deca524c9b3b388167ce7b12fd731f456c8164621cb447133134ad4d1b8d64b8
-
SHA512
ef7c675344345e9a9d354c583d29b589571a2b892fe03f2d620f04fe955a82d838a611aef44fed844ad66be916c95b784b754f3eeec693a7ffaaa02e8095d956
-
SSDEEP
24576:77Fy4FMmZg15PgU+/uka4YjCp/SKhdm87PUY9Zbvhjdqdb3rWBvO0yjm0cg78:7737Rp/7dmGN9tJjdqRrwvol78
Malware Config
Targets
-
-
Target
deca524c9b3b388167ce7b12fd731f456c8164621cb447133134ad4d1b8d64b8
-
Size
1.6MB
-
MD5
15fdfb61c3bcf26af3548d7fade4a8ae
-
SHA1
d76af19cc583ea66d0caa943a9593761c19dd020
-
SHA256
deca524c9b3b388167ce7b12fd731f456c8164621cb447133134ad4d1b8d64b8
-
SHA512
ef7c675344345e9a9d354c583d29b589571a2b892fe03f2d620f04fe955a82d838a611aef44fed844ad66be916c95b784b754f3eeec693a7ffaaa02e8095d956
-
SSDEEP
24576:77Fy4FMmZg15PgU+/uka4YjCp/SKhdm87PUY9Zbvhjdqdb3rWBvO0yjm0cg78:7737Rp/7dmGN9tJjdqRrwvol78
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-