36d695e2dc5f58e1766c4e77a41414491e87eca29e0c249a7c4fc91866f3b21a | Triage

Sharing

General

Target

36d695e2dc5f58e1766c4e77a41414491e87eca29e0c249a7c4fc91866f3b21a
Size

4.6MB
Sample

240526-p85w6seg4t
MD5

3163018748a2654f8a4f163ddef28a70
SHA1

578ff40fcf01877dd1f481f556d1c97b5e50c191
SHA256

36d695e2dc5f58e1766c4e77a41414491e87eca29e0c249a7c4fc91866f3b21a
SHA512

db6bcff1a28560d696cff104bdf87787e4673f22489257ff77f8ab14a71d3aeb568b0c1a8df32b8e1cb17d05e6fa339a7261761c8dde0845f697023eef76b07d
SSDEEP

98304:/kUz/fTQSl103cP+7AVqETc5X0XxzXsVrFrJ24fiE:lzvl10PA4MM0Xxzw2Op

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  36d695e2dc5f58e1766c4e77a41414491e87eca29e0c249a7c4fc91866f3b21a
- Size
  
  4.6MB
- MD5
  
  3163018748a2654f8a4f163ddef28a70
- SHA1
  
  578ff40fcf01877dd1f481f556d1c97b5e50c191
- SHA256
  
  36d695e2dc5f58e1766c4e77a41414491e87eca29e0c249a7c4fc91866f3b21a
- SHA512
  
  db6bcff1a28560d696cff104bdf87787e4673f22489257ff77f8ab14a71d3aeb568b0c1a8df32b8e1cb17d05e6fa339a7261761c8dde0845f697023eef76b07d
- SSDEEP
  
  98304:/kUz/fTQSl103cP+7AVqETc5X0XxzXsVrFrJ24fiE:lzvl10PA4MM0Xxzw2Op
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence