Overview

overview

8

Static

static

8

80d112f44b...in.xls

windows7-x64

7

80d112f44b...in.xls

windows10-2004-x64

1

Resubmissions

01/06/2024, 22:28

240601-2dxnjagh6w 8

01/06/2024, 22:06

240601-1z52csgc2w 8

01/06/2024, 22:02

240601-1x8z8sgb41 8

01/06/2024, 22:01

240601-1xl6gagb2s 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    80d112f44bbdccc6d7a4501e6f502e84a2a90fcfbe500a9c0eed2570c927c6a6.bin.sample

  • Size

    1.9MB

  • Sample

    240601-1z52csgc2w

  • MD5

    74ee1023bb6fc9402c4c788996af031d

  • SHA1

    8e052e1dd1c3c37a614cdffc804f221ed8dc4b45

  • SHA256

    80d112f44bbdccc6d7a4501e6f502e84a2a90fcfbe500a9c0eed2570c927c6a6

  • SHA512

    b0e35438793d903488dfb9b5a40f615966c20b2e5f5c93a8487b38bed790b4a065304c7b552b338aafeedea97b5c81d08166997f4cdd33008e9ad5d0aff107ad

  • SSDEEP

    24576:iVd/QDRUNF+a2lWJ2dNWJ8cPLU1rGcnBD0mUAauSzttvDOP8RZfSp+Y+8TXi:iVJQDRsFJ2li2XWp4dBnPPaum5O4rP8

Score
8/10
bootkitmacromacro_on_actionpersistence

Malware Config

Targets

    • Target

      80d112f44bbdccc6d7a4501e6f502e84a2a90fcfbe500a9c0eed2570c927c6a6.bin.sample

    • Size

      1.9MB

    • MD5

      74ee1023bb6fc9402c4c788996af031d

    • SHA1

      8e052e1dd1c3c37a614cdffc804f221ed8dc4b45

    • SHA256

      80d112f44bbdccc6d7a4501e6f502e84a2a90fcfbe500a9c0eed2570c927c6a6

    • SHA512

      b0e35438793d903488dfb9b5a40f615966c20b2e5f5c93a8487b38bed790b4a065304c7b552b338aafeedea97b5c81d08166997f4cdd33008e9ad5d0aff107ad

    • SSDEEP

      24576:iVd/QDRUNF+a2lWJ2dNWJ8cPLU1rGcnBD0mUAauSzttvDOP8RZfSp+Y+8TXi:iVJQDRsFJ2li2XWp4dBnPPaum5O4rP8

    Score
    7/10
    bootkitpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks