Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12-06-2024 11:42

General

  • Target

    a620b3c0315c9909544a52a1daed8851b0fb505684a11d592db55c745add6e46.exe

  • Size

    219KB

  • MD5

    3203ff9950034bf43abfd92dc2de3af4

  • SHA1

    7c516ae90177fc906094bcda2e9a450026b48b55

  • SHA256

    a620b3c0315c9909544a52a1daed8851b0fb505684a11d592db55c745add6e46

  • SHA512

    43c626a450b18992ec814d08c0d907b7efc92b0f5dc56a8e1c1367af1d04f0a82a9c6cd711979f660f74c6f4151e23c981b342c6e3e38a139098436875add071

  • SSDEEP

    3072:32RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhbK0K6:30KgGwHqwOOELha+sm2D2+UhngN5K4t1

Score
6/10

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

Processes

  • C:\Users\Admin\AppData\Local\Temp\a620b3c0315c9909544a52a1daed8851b0fb505684a11d592db55c745add6e46.exe
    "C:\Users\Admin\AppData\Local\Temp\a620b3c0315c9909544a52a1daed8851b0fb505684a11d592db55c745add6e46.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    PID:1988

Network

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Replay Monitor

Loading Replay Monitor...

Downloads