General

  • Target

    5f3206c75b7f72a6dd4eb79a7354f75bbf30837d3c489273c52d95690050ea90

  • Size

    220KB

  • Sample

    240612-lr2xeazeqd

  • MD5

    5928a841f5329a19619bd338ee70a004

  • SHA1

    7168bf76df755996fbc464bc771a726a2937669d

  • SHA256

    5f3206c75b7f72a6dd4eb79a7354f75bbf30837d3c489273c52d95690050ea90

  • SHA512

    4ad4c9669852593ae5c981d2636a5ccd27466942509855dd883b58fefb8e2d7918cdcf40932cbe732e29d971676d31d52d423c5e0f7725212bfee0e074e1d203

  • SSDEEP

    6144:d9+qOLoaXjhenMGmmUEebVF+uzKK4zy6tU:d9+pL/KMG5U/auGK4zyeU

Score
8/10

Malware Config

Targets

    • Target

      5f3206c75b7f72a6dd4eb79a7354f75bbf30837d3c489273c52d95690050ea90

    • Size

      220KB

    • MD5

      5928a841f5329a19619bd338ee70a004

    • SHA1

      7168bf76df755996fbc464bc771a726a2937669d

    • SHA256

      5f3206c75b7f72a6dd4eb79a7354f75bbf30837d3c489273c52d95690050ea90

    • SHA512

      4ad4c9669852593ae5c981d2636a5ccd27466942509855dd883b58fefb8e2d7918cdcf40932cbe732e29d971676d31d52d423c5e0f7725212bfee0e074e1d203

    • SSDEEP

      6144:d9+qOLoaXjhenMGmmUEebVF+uzKK4zy6tU:d9+pL/KMG5U/auGK4zyeU

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Discovery

Software Discovery

1
T1518

Security Software Discovery

1
T1518.001

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks