General

  • Target

    5f1f58ddb10981ebac6768c1fa96d10b.bin

  • Size

    51KB

  • Sample

    240612-b8ehbsybla

  • MD5

    5f1f58ddb10981ebac6768c1fa96d10b

  • SHA1

    74ce01b2433e0e1ca56be9028814c4554133e4ab

  • SHA256

    3027176f531789fdf4d4feb51fd13ac4b3b0f8a27d41c1dc7d019954bf133bae

  • SHA512

    b3a46995e9120b0b023c90aee4c884f8e3a15fa3170e81e87b64c50d30f5fb335c573cc6ad64cf1fc17723808d224db4e514166c34f7c94e047d05860580d622

  • SSDEEP

    768:nsdieaQXMT5tihmUwlonK8zEDEXn+nmGvx/n1WwwwwCYfhhp2ilKbNKT:nsdhK+mUwloreJ/n0fh32iEhKT

Score
7/10

Malware Config

Targets

    • Target

      5f1f58ddb10981ebac6768c1fa96d10b.bin

    • Size

      51KB

    • MD5

      5f1f58ddb10981ebac6768c1fa96d10b

    • SHA1

      74ce01b2433e0e1ca56be9028814c4554133e4ab

    • SHA256

      3027176f531789fdf4d4feb51fd13ac4b3b0f8a27d41c1dc7d019954bf133bae

    • SHA512

      b3a46995e9120b0b023c90aee4c884f8e3a15fa3170e81e87b64c50d30f5fb335c573cc6ad64cf1fc17723808d224db4e514166c34f7c94e047d05860580d622

    • SSDEEP

      768:nsdieaQXMT5tihmUwlonK8zEDEXn+nmGvx/n1WwwwwCYfhhp2ilKbNKT:nsdhK+mUwloreJ/n0fh32iEhKT

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks