General
-
Target
2024-06-11_0e17330e148fe6ea3001b6d5d7b915fd_mbrlock_nymaim_xiaoba
-
Size
984KB
-
Sample
240611-hgdv2sydkj
-
MD5
0e17330e148fe6ea3001b6d5d7b915fd
-
SHA1
e94a0b778cd22be8465fe46ab5d283a402579212
-
SHA256
b5ac92004730836706c361d4f5f8237cc4f3f76bfc20b9a368242f4cf64307d2
-
SHA512
c3c1cbeb2fdc61f47224245af718e12cd964c42b992eab49323666b026ba84f0078937e70baa753665f166254a37bcaa5837092efa14185aa4cd7f956ebcc6ec
-
SSDEEP
24576:qh5TZiUytkkRgvoKiIL7DW/GdxueSdIDAY55tbrqwt8tGBtm4VQ:qh5I+sgjvleQAY3JqwtZBHQ
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-11_0e17330e148fe6ea3001b6d5d7b915fd_mbrlock_nymaim_xiaoba.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-11_0e17330e148fe6ea3001b6d5d7b915fd_mbrlock_nymaim_xiaoba.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-11_0e17330e148fe6ea3001b6d5d7b915fd_mbrlock_nymaim_xiaoba
-
Size
984KB
-
MD5
0e17330e148fe6ea3001b6d5d7b915fd
-
SHA1
e94a0b778cd22be8465fe46ab5d283a402579212
-
SHA256
b5ac92004730836706c361d4f5f8237cc4f3f76bfc20b9a368242f4cf64307d2
-
SHA512
c3c1cbeb2fdc61f47224245af718e12cd964c42b992eab49323666b026ba84f0078937e70baa753665f166254a37bcaa5837092efa14185aa4cd7f956ebcc6ec
-
SSDEEP
24576:qh5TZiUytkkRgvoKiIL7DW/GdxueSdIDAY55tbrqwt8tGBtm4VQ:qh5I+sgjvleQAY3JqwtZBHQ
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-