General
-
Target
drive-download-20240615T203308Z-001.zip
-
Size
204.0MB
-
Sample
240615-zf52kstbrg
-
MD5
7463c589e8f1dd9c117a6f59224bf18a
-
SHA1
39a93ea52958c26763eaeecf18179daf99990145
-
SHA256
f223a2fd332230305d338705dd9ee3848cc43ef867f653cfdec20428fd8a92c9
-
SHA512
3b3cb80768c6557a79f82503d9d6ddb162e6335cc5a75d2d4f4cbee17f0e64c9756b7a7d54b4f8111292866cb4dc07087ebb9ad1e3eacb0950a58b6adbfee600
-
SSDEEP
6291456:elyRaxpAhB93R1IX9S1KQI3rNRLEo0dlOZ:ely0xpg3D+9a4LooTZ
Static task
static1
Behavioral task
behavioral1
Sample
Fix/LayOut/LayOut.exe
Resource
win10-20240404-es
Behavioral task
behavioral2
Sample
Fix/SketchUp.exe
Resource
win10-20240404-es
Behavioral task
behavioral3
Sample
Fix/Style Builder/Style Builder.exe
Resource
win10-20240404-es
Behavioral task
behavioral4
Sample
setup.exe
Resource
win10-20240404-es
Malware Config
Targets
-
-
Target
Fix/LayOut/LayOut.exe
-
Size
18.5MB
-
MD5
fe3e916a97ff53f4cf81e815e576ed4b
-
SHA1
411d9b2173a856e621b21e7370583cff4b5feceb
-
SHA256
844ad6e9e692b9bb10e476e31d4e0b87631c4188b2d79f40705bd1f5c32c1607
-
SHA512
e26500ba3c8df91af6de80d39174ba8d808a40d92a3eaacf5adc2392a29b4fc19cc4158b50c3dc879fb9ac48e61497cde27d62c9543489c22297f3a4b1d4d27d
-
SSDEEP
98304:/xoptSoiohzfwkerjDSPjkG9f6IKkqsgCxEYt2kFpNJ37yDNwKmsBr90/g:5opYoioxfuSPPf3qsgCAwKmiEg
Score1/10 -
-
-
Target
Fix/SketchUp.exe
-
Size
35.5MB
-
MD5
7c35fd7f460b51c9ad8fbdcf9c659667
-
SHA1
8405fba69abe63519f481cf34d5c13cf2488c92f
-
SHA256
9d3931686a7c9b5b7328e90d088777f8517214c3fbfc021ff1d0a8200b948296
-
SHA512
0c0a256ae6a92951e10841d3b339f0b69856dff0a1c0a9781852362a877deb586091e1f46f81ae0234faae2929b905f9869b5a0f6bb4fc3cd89d1c7e4cf411a7
-
SSDEEP
196608:JVBXrLNLVBmJQ5cuVGFsSlBlqfdrrg0rg0rgAFLOyomFHKnPH:JVBXH1mwcuVBCBlKdnJJrFG
Score1/10 -
-
-
Target
Fix/Style Builder/Style Builder.exe
-
Size
7.9MB
-
MD5
76f8f92ccbd2f92dbfebc82d8c78c934
-
SHA1
5d768c6160b3f797eefc82172792b4fd8a31014c
-
SHA256
485781e5d763670e1ae498e213dcfa464ea91238087f2347e5deb15b18cd70a6
-
SHA512
02bed27390d913a5bf8376796c542c59011335ab8a49a0c9036182592b0b9b70fd879fd4064aac13dd0dd97a869f0d9a19f2ee2bc00b4464889b2194d2db08dc
-
SSDEEP
49152:8LoNmdaKAJGG2sI/ABobLWADCMRAYg07q3vsbCursbPtP5QZsv1FgGLGAuqV8zQ2:5IH1wfuC86crB2EnKNX/1q
Score1/10 -
-
-
Target
setup.exe
-
Size
182.0MB
-
MD5
67c3e4c1f0f323fc6523b980bc34718b
-
SHA1
c7704e253caa492bd38c395be23bcbfd4689de72
-
SHA256
029593e806da18732e1bf105543f1bc56bb40dc13e1e45e4d0953fd33871852d
-
SHA512
c991a819c5fab58d83899a59ecd172dd6397e95c59ba6bc04e2c96be5a0d1fd50f21d9644ee4f22553e91d50dc482bbd75fbcc67b61d9a10f6db19018d23f641
-
SSDEEP
3145728:Gz9ihlOP5L8csKxfLrLqtGQEywx0PPJWbzEeS/HyY7rk/fO9WIRHZ9tY:Gxihl6LvjPXxwPJWHEeS/HJ7rWOc+ZLY
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Pre-OS Boot
1Bootkit
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1