15c7f18ebc6081bad392fdb03b8f52b776159b36bcaec6d883d0934da7f3a526 | Triage

Sharing

General

Target

15c7f18ebc6081bad392fdb03b8f52b776159b36bcaec6d883d0934da7f3a526
Size

4.8MB
Sample

240528-hwljfaac6s
MD5

006c9170f9aacb1d06174f0eb4788ed1
SHA1

06edd5800e7b2e2dac00118b8be1e6bf2453bfbe
SHA256

15c7f18ebc6081bad392fdb03b8f52b776159b36bcaec6d883d0934da7f3a526
SHA512

2544f1b6e432f913a6d665aab2e99043fc8008fec4143e1bd9e8bf773147512a563844cde07f9a9fa83697abf14dd7ec2dd7bc7234f25a014d00c4e3ebcd8316
SSDEEP

98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXE:TcmZl85gyjovK65E8ob5Sx8aXE

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  15c7f18ebc6081bad392fdb03b8f52b776159b36bcaec6d883d0934da7f3a526
- Size
  
  4.8MB
- MD5
  
  006c9170f9aacb1d06174f0eb4788ed1
- SHA1
  
  06edd5800e7b2e2dac00118b8be1e6bf2453bfbe
- SHA256
  
  15c7f18ebc6081bad392fdb03b8f52b776159b36bcaec6d883d0934da7f3a526
- SHA512
  
  2544f1b6e432f913a6d665aab2e99043fc8008fec4143e1bd9e8bf773147512a563844cde07f9a9fa83697abf14dd7ec2dd7bc7234f25a014d00c4e3ebcd8316
- SSDEEP
  
  98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXE:TcmZl85gyjovK65E8ob5Sx8aXE
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence