Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12-06-2024 10:50

General

  • Target

    599270f6ab62c5b317fee86189468728fdd911e390573357246b46d1c597a1e8.exe

  • Size

    219KB

  • MD5

    320c73c09bc3f56f59bca1d4c57cda55

  • SHA1

    e672f2cc2c4f7fbf03373793b7c12f7aa6567f24

  • SHA256

    599270f6ab62c5b317fee86189468728fdd911e390573357246b46d1c597a1e8

  • SHA512

    8f7f72ecf3a1d3169e2423670dcf600bbd358bb8c3f9450c5558bde7c8b175b30a7d1910eb4a3f2090cffb9ee58c8e98200695d2f1ac5a02294b6e7097fec55b

  • SSDEEP

    3072:Z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhZK0Kp:Z0KgGwHqwOOELha+sm2D2+UhngN7K4M9

Score
6/10

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

Processes

  • C:\Users\Admin\AppData\Local\Temp\599270f6ab62c5b317fee86189468728fdd911e390573357246b46d1c597a1e8.exe
    "C:\Users\Admin\AppData\Local\Temp\599270f6ab62c5b317fee86189468728fdd911e390573357246b46d1c597a1e8.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    PID:3608

Network

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Replay Monitor

Loading Replay Monitor...

Downloads