General

  • Target

    f92f88309c17e484e1dd388e1f1e26ed55e5711431ac60a009cef1277e0b96c2

  • Size

    218KB

  • Sample

    240612-s1784stgkq

  • MD5

    3cbe5544b0d3722f34ac768cd896f8b8

  • SHA1

    92afe734b0d828fc9de551d108fdcfb925f3daeb

  • SHA256

    f92f88309c17e484e1dd388e1f1e26ed55e5711431ac60a009cef1277e0b96c2

  • SHA512

    e08e1bac4142d51291ae7e3c3602e831d71e209ab4cc0d9b96f7130a3009c3c97aea2f7b06d3e72986f7f0b249aab360f8f7325324978a2975632d326ac75f34

  • SSDEEP

    6144:UCfHrZae3GFqRQcMeh4WpywpjchNCN/K4Debv:UCfLZadcM24fRNUK4DeD

Score
8/10

Malware Config

Targets

    • Target

      f92f88309c17e484e1dd388e1f1e26ed55e5711431ac60a009cef1277e0b96c2

    • Size

      218KB

    • MD5

      3cbe5544b0d3722f34ac768cd896f8b8

    • SHA1

      92afe734b0d828fc9de551d108fdcfb925f3daeb

    • SHA256

      f92f88309c17e484e1dd388e1f1e26ed55e5711431ac60a009cef1277e0b96c2

    • SHA512

      e08e1bac4142d51291ae7e3c3602e831d71e209ab4cc0d9b96f7130a3009c3c97aea2f7b06d3e72986f7f0b249aab360f8f7325324978a2975632d326ac75f34

    • SSDEEP

      6144:UCfHrZae3GFqRQcMeh4WpywpjchNCN/K4Debv:UCfLZadcM24fRNUK4DeD

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Discovery

Software Discovery

1
T1518

Security Software Discovery

1
T1518.001

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks