Analysis
-
max time kernel
141s -
max time network
51s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
16-06-2024 16:50
Static task
static1
Behavioral task
behavioral1
Sample
b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e.exe
Resource
win11-20240611-en
General
-
Target
b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e.exe
-
Size
621KB
-
MD5
9cf76597ae1c9a448904954d3129271f
-
SHA1
a348f5a24ac667ecb1d5fd47f2ad723b6e4d6132
-
SHA256
b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e
-
SHA512
7b08ee2b929e186bd4a277335f61945fa705b21fc3dd2b2d0b4090a84d98e57d72dc4d42b02db9d11b2cb32d441ab6a47cf7f6ffa25291f26302c2c96817230f
-
SSDEEP
12288:g1bFn9tttvVMviYvGzRQiYTBiqdn+K+3MsH/8:glF3/CiYvGdQiSUUnruHU
Malware Config
Signatures
-
Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs
Bootkits write to the MBR to gain persistence at a level below the operating system.
Processes:
b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e.exedescription ioc process File opened for modification \??\PHYSICALDRIVE0 b31b583c0919b47cd43e4904149c37672a4c17a6505e3c2aa77ea69696c5b21e.exe