General
-
Target
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a
-
Size
627KB
-
Sample
240617-fata2syeqm
-
MD5
9e0f6f1ece6e43a25fca63d2feed8cfe
-
SHA1
c2793e586ee1168e53ae005969213e69da61737c
-
SHA256
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a
-
SHA512
e74d54f851c0a092a630038a947f6866499d551d7468599864ab700fc0678ac1b29bb15b902d2ba9fc66dee3423bd11ffb38bb2f2f0b62e5a0e48a36ebd4d0c8
-
SSDEEP
12288:AlnXIR9D+nC8pqwRmMdUL0c77eyeH+2HcSfEY3DAshOTT+ZcOgKS/s:Am0C84wRmMaL0xrX8Sfd5sTPOhSk
Static task
static1
Behavioral task
behavioral1
Sample
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a
-
Size
627KB
-
MD5
9e0f6f1ece6e43a25fca63d2feed8cfe
-
SHA1
c2793e586ee1168e53ae005969213e69da61737c
-
SHA256
fffdf1835d7392c5219e52210e1defe69baaa05ea052e0e64e01fb6711ca4c6a
-
SHA512
e74d54f851c0a092a630038a947f6866499d551d7468599864ab700fc0678ac1b29bb15b902d2ba9fc66dee3423bd11ffb38bb2f2f0b62e5a0e48a36ebd4d0c8
-
SSDEEP
12288:AlnXIR9D+nC8pqwRmMdUL0c77eyeH+2HcSfEY3DAshOTT+ZcOgKS/s:Am0C84wRmMaL0xrX8Sfd5sTPOhSk
Score9/10-
Detects Windows exceutables bypassing UAC using CMSTP COM interfaces. MITRE (T1218.003)
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-