General
-
Target
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a
-
Size
5.6MB
-
Sample
240526-mpx14sfc8z
-
MD5
5768f0163afc6b31be4062a68457d2e4
-
SHA1
ec342df4ab7684a94080479cb1a7dc666365dbd8
-
SHA256
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a
-
SHA512
67d9edd1162287f95967194a2d2940d9d9e66dbfa7bf50e0e53cbfcec351b9761c92183b1b1ea276dd9ab23f4d122588ab52a2b44b96af052b8b9e3488a5cc31
-
SSDEEP
98304:H8sjk1k+fZS9+wz4r8SSQxl4R/Yi6RVF8UuDwOSn3s2:ZjwbfZnwuxZclDY
Static task
static1
Behavioral task
behavioral1
Sample
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a
-
Size
5.6MB
-
MD5
5768f0163afc6b31be4062a68457d2e4
-
SHA1
ec342df4ab7684a94080479cb1a7dc666365dbd8
-
SHA256
af8090020990899af1caa6ec8353e8252f9fb68163d97d29fcf2ae206a7b799a
-
SHA512
67d9edd1162287f95967194a2d2940d9d9e66dbfa7bf50e0e53cbfcec351b9761c92183b1b1ea276dd9ab23f4d122588ab52a2b44b96af052b8b9e3488a5cc31
-
SSDEEP
98304:H8sjk1k+fZS9+wz4r8SSQxl4R/Yi6RVF8UuDwOSn3s2:ZjwbfZnwuxZclDY
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies boot configuration data using bcdedit
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-