General

  • Target

    17bd03035d0c180f00068408becea785d57c9ae6a64699c3703dba1d44bad72a

  • Size

    219KB

  • Sample

    240612-q2vy3a1aqn

  • MD5

    4ba74490a94fbf1c6d07954636b70b9a

  • SHA1

    005e1539ef563b58cc185b607401133d7e1cc2b9

  • SHA256

    17bd03035d0c180f00068408becea785d57c9ae6a64699c3703dba1d44bad72a

  • SHA512

    80f910093a20bdf8f33c16b3cccebe9e07c546f68bbef6dabfb76bdce202e612bfae98caef2232b5e1fb11b63953ab53ddedc8213218013bb38c1b594ad0d1f1

  • SSDEEP

    3072:y2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhh9K0Kq:y0KgGwHqwOOELha+sm2D2+UhngNHK4mg

Score
8/10

Malware Config

Targets

    • Target

      17bd03035d0c180f00068408becea785d57c9ae6a64699c3703dba1d44bad72a

    • Size

      219KB

    • MD5

      4ba74490a94fbf1c6d07954636b70b9a

    • SHA1

      005e1539ef563b58cc185b607401133d7e1cc2b9

    • SHA256

      17bd03035d0c180f00068408becea785d57c9ae6a64699c3703dba1d44bad72a

    • SHA512

      80f910093a20bdf8f33c16b3cccebe9e07c546f68bbef6dabfb76bdce202e612bfae98caef2232b5e1fb11b63953ab53ddedc8213218013bb38c1b594ad0d1f1

    • SSDEEP

      3072:y2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhh9K0Kq:y0KgGwHqwOOELha+sm2D2+UhngNHK4mg

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Discovery

Software Discovery

1
T1518

Security Software Discovery

1
T1518.001

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks