General

  • Target

    drive-download-20240615T203308Z-001.zip

  • Size

    204.0MB

  • Sample

    240615-zf52kstbrg

  • MD5

    7463c589e8f1dd9c117a6f59224bf18a

  • SHA1

    39a93ea52958c26763eaeecf18179daf99990145

  • SHA256

    f223a2fd332230305d338705dd9ee3848cc43ef867f653cfdec20428fd8a92c9

  • SHA512

    3b3cb80768c6557a79f82503d9d6ddb162e6335cc5a75d2d4f4cbee17f0e64c9756b7a7d54b4f8111292866cb4dc07087ebb9ad1e3eacb0950a58b6adbfee600

  • SSDEEP

    6291456:elyRaxpAhB93R1IX9S1KQI3rNRLEo0dlOZ:ely0xpg3D+9a4LooTZ

Malware Config

Targets

    • Target

      Fix/LayOut/LayOut.exe

    • Size

      18.5MB

    • MD5

      fe3e916a97ff53f4cf81e815e576ed4b

    • SHA1

      411d9b2173a856e621b21e7370583cff4b5feceb

    • SHA256

      844ad6e9e692b9bb10e476e31d4e0b87631c4188b2d79f40705bd1f5c32c1607

    • SHA512

      e26500ba3c8df91af6de80d39174ba8d808a40d92a3eaacf5adc2392a29b4fc19cc4158b50c3dc879fb9ac48e61497cde27d62c9543489c22297f3a4b1d4d27d

    • SSDEEP

      98304:/xoptSoiohzfwkerjDSPjkG9f6IKkqsgCxEYt2kFpNJ37yDNwKmsBr90/g:5opYoioxfuSPPf3qsgCAwKmiEg

    Score
    1/10
    • Target

      Fix/SketchUp.exe

    • Size

      35.5MB

    • MD5

      7c35fd7f460b51c9ad8fbdcf9c659667

    • SHA1

      8405fba69abe63519f481cf34d5c13cf2488c92f

    • SHA256

      9d3931686a7c9b5b7328e90d088777f8517214c3fbfc021ff1d0a8200b948296

    • SHA512

      0c0a256ae6a92951e10841d3b339f0b69856dff0a1c0a9781852362a877deb586091e1f46f81ae0234faae2929b905f9869b5a0f6bb4fc3cd89d1c7e4cf411a7

    • SSDEEP

      196608:JVBXrLNLVBmJQ5cuVGFsSlBlqfdrrg0rg0rgAFLOyomFHKnPH:JVBXH1mwcuVBCBlKdnJJrFG

    Score
    1/10
    • Target

      Fix/Style Builder/Style Builder.exe

    • Size

      7.9MB

    • MD5

      76f8f92ccbd2f92dbfebc82d8c78c934

    • SHA1

      5d768c6160b3f797eefc82172792b4fd8a31014c

    • SHA256

      485781e5d763670e1ae498e213dcfa464ea91238087f2347e5deb15b18cd70a6

    • SHA512

      02bed27390d913a5bf8376796c542c59011335ab8a49a0c9036182592b0b9b70fd879fd4064aac13dd0dd97a869f0d9a19f2ee2bc00b4464889b2194d2db08dc

    • SSDEEP

      49152:8LoNmdaKAJGG2sI/ABobLWADCMRAYg07q3vsbCursbPtP5QZsv1FgGLGAuqV8zQ2:5IH1wfuC86crB2EnKNX/1q

    Score
    1/10
    • Target

      setup.exe

    • Size

      182.0MB

    • MD5

      67c3e4c1f0f323fc6523b980bc34718b

    • SHA1

      c7704e253caa492bd38c395be23bcbfd4689de72

    • SHA256

      029593e806da18732e1bf105543f1bc56bb40dc13e1e45e4d0953fd33871852d

    • SHA512

      c991a819c5fab58d83899a59ecd172dd6397e95c59ba6bc04e2c96be5a0d1fd50f21d9644ee4f22553e91d50dc482bbd75fbcc67b61d9a10f6db19018d23f641

    • SSDEEP

      3145728:Gz9ihlOP5L8csKxfLrLqtGQEywx0PPJWbzEeS/HyY7rk/fO9WIRHZ9tY:Gxihl6LvjPXxwPJWHEeS/HJ7rWOc+ZLY

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Modify Registry

1
T1112

Discovery

Query Registry

3
T1012

Peripheral Device Discovery

2
T1120

System Information Discovery

3
T1082

Tasks