General
-
Target
5f1f58ddb10981ebac6768c1fa96d10b.bin
-
Size
51KB
-
Sample
240612-b8ehbsybla
-
MD5
5f1f58ddb10981ebac6768c1fa96d10b
-
SHA1
74ce01b2433e0e1ca56be9028814c4554133e4ab
-
SHA256
3027176f531789fdf4d4feb51fd13ac4b3b0f8a27d41c1dc7d019954bf133bae
-
SHA512
b3a46995e9120b0b023c90aee4c884f8e3a15fa3170e81e87b64c50d30f5fb335c573cc6ad64cf1fc17723808d224db4e514166c34f7c94e047d05860580d622
-
SSDEEP
768:nsdieaQXMT5tihmUwlonK8zEDEXn+nmGvx/n1WwwwwCYfhhp2ilKbNKT:nsdhK+mUwloreJ/n0fh32iEhKT
Static task
static1
Behavioral task
behavioral1
Sample
5f1f58ddb10981ebac6768c1fa96d10b.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5f1f58ddb10981ebac6768c1fa96d10b.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
5f1f58ddb10981ebac6768c1fa96d10b.bin
-
Size
51KB
-
MD5
5f1f58ddb10981ebac6768c1fa96d10b
-
SHA1
74ce01b2433e0e1ca56be9028814c4554133e4ab
-
SHA256
3027176f531789fdf4d4feb51fd13ac4b3b0f8a27d41c1dc7d019954bf133bae
-
SHA512
b3a46995e9120b0b023c90aee4c884f8e3a15fa3170e81e87b64c50d30f5fb335c573cc6ad64cf1fc17723808d224db4e514166c34f7c94e047d05860580d622
-
SSDEEP
768:nsdieaQXMT5tihmUwlonK8zEDEXn+nmGvx/n1WwwwwCYfhhp2ilKbNKT:nsdhK+mUwloreJ/n0fh32iEhKT
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-