General

  • Target

    dd7a6912c366900b6065485b45bd8383b56181627436511149ed1347a9a110e6

  • Size

    219KB

  • Sample

    240612-kqyypawgjr

  • MD5

    57b0358563fd473a41af124574c3463f

  • SHA1

    b519b68cdf4dbbe51fb488fd6eead7dcf38020c8

  • SHA256

    dd7a6912c366900b6065485b45bd8383b56181627436511149ed1347a9a110e6

  • SHA512

    e44c2c73fe5b2572ebd19d77f2ad72461a4c9453beec4d3609d092bf6fa5ba1f0144e22fad4b676d9535616e87b033a0a9d2511bdb14e3687fa65c3f52142e56

  • SSDEEP

    3072:d2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhYK0KE:d0KgGwHqwOOELha+sm2D2+UhngNeK4B3

Score
8/10

Malware Config

Targets

    • Target

      dd7a6912c366900b6065485b45bd8383b56181627436511149ed1347a9a110e6

    • Size

      219KB

    • MD5

      57b0358563fd473a41af124574c3463f

    • SHA1

      b519b68cdf4dbbe51fb488fd6eead7dcf38020c8

    • SHA256

      dd7a6912c366900b6065485b45bd8383b56181627436511149ed1347a9a110e6

    • SHA512

      e44c2c73fe5b2572ebd19d77f2ad72461a4c9453beec4d3609d092bf6fa5ba1f0144e22fad4b676d9535616e87b033a0a9d2511bdb14e3687fa65c3f52142e56

    • SSDEEP

      3072:d2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhYK0KE:d0KgGwHqwOOELha+sm2D2+UhngNeK4B3

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Discovery

Software Discovery

1
T1518

Security Software Discovery

1
T1518.001

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks