Resubmissions

15-06-2024 14:40

240615-r11nlaxhnn 7

15-06-2024 14:39

240615-rz9vwatfrf 7

General

  • Target

    WinRAR-Archiv (neu).rar

  • Size

    8KB

  • Sample

    240615-r11nlaxhnn

  • MD5

    61d4006d2758d037fbdc2686d28c2329

  • SHA1

    fcfaf9a7e96311efe211973fa1801a6821b2a268

  • SHA256

    aca0407955dea66597541ee3645f08b2c8d3aaefad7bbaa14c458433598077ea

  • SHA512

    6690450f490017562cb6a5d83d5ba9f4fbfd6a27cae8ad7a0dd39080d405c7b4afd11bca56ca066b8a3a4e7cd13424446f0898e3b9e7189447e7906a8658c777

  • SSDEEP

    192:TRxYQ4FVr8dIXilx24td50AtmXrQjzXtNSimTSrhwyl6fKbU8wx:9iQ4FVrHqxxtdZ4XrQnXt+Aad

Score
7/10

Malware Config

Targets

    • Target

      WinRAR-Archiv (neu).rar

    • Size

      8KB

    • MD5

      61d4006d2758d037fbdc2686d28c2329

    • SHA1

      fcfaf9a7e96311efe211973fa1801a6821b2a268

    • SHA256

      aca0407955dea66597541ee3645f08b2c8d3aaefad7bbaa14c458433598077ea

    • SHA512

      6690450f490017562cb6a5d83d5ba9f4fbfd6a27cae8ad7a0dd39080d405c7b4afd11bca56ca066b8a3a4e7cd13424446f0898e3b9e7189447e7906a8658c777

    • SSDEEP

      192:TRxYQ4FVr8dIXilx24td50AtmXrQjzXtNSimTSrhwyl6fKbU8wx:9iQ4FVrHqxxtdZ4XrQnXt+Aad

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Discovery

System Information Discovery

1
T1082

Tasks