dd51e5c17dc15cb624fa7a87301592c8b5fcee637d5e3ac1768108d3de9dfdfe | Triage

Sharing

General

Target

dd51e5c17dc15cb624fa7a87301592c8b5fcee637d5e3ac1768108d3de9dfdfe
Size

4.8MB
Sample

240612-gekp5ssckp
MD5

2cd7dfc6aac53030b823770b3fbab77c
SHA1

8dfb58ba95d0a734eae43f3871ee21f5f95a504a
SHA256

dd51e5c17dc15cb624fa7a87301592c8b5fcee637d5e3ac1768108d3de9dfdfe
SHA512

b7e092a526e478c6bf661c7bb54905f8ba12a0d5acc92c815972abc41035c2b8633d99811fd83753840619684ca8620c9b4a30311f978bdb3ac5924c2f8870d3
SSDEEP

98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXq:TcmZl85gyjovK65E8ob5Sx8aXq

Score

7^/10

bootkit persistence

Malware Config

Targets

- Target
  
  dd51e5c17dc15cb624fa7a87301592c8b5fcee637d5e3ac1768108d3de9dfdfe
- Size
  
  4.8MB
- MD5
  
  2cd7dfc6aac53030b823770b3fbab77c
- SHA1
  
  8dfb58ba95d0a734eae43f3871ee21f5f95a504a
- SHA256
  
  dd51e5c17dc15cb624fa7a87301592c8b5fcee637d5e3ac1768108d3de9dfdfe
- SHA512
  
  b7e092a526e478c6bf661c7bb54905f8ba12a0d5acc92c815972abc41035c2b8633d99811fd83753840619684ca8620c9b4a30311f978bdb3ac5924c2f8870d3
- SSDEEP
  
  98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXq:TcmZl85gyjovK65E8ob5Sx8aXq
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence