06cee146ebf89db835f1529bd43e75f992ea628059d1034baede05ded22a6f57 | Triage

Sharing

General

Target

2024-06-23_f619363b3632038bbc1fb227a689d94d_hacktools_xiaoba
Size

816KB
Sample

240623-3gtlqaxgnh
MD5

f619363b3632038bbc1fb227a689d94d
SHA1

813ae9fceef08857b942a481fcde4944c541638e
SHA256

06cee146ebf89db835f1529bd43e75f992ea628059d1034baede05ded22a6f57
SHA512

1946b16395e51dfc0f909b6105f60829a60c5a383d4e559db410e2f362e88106c592ef08750f32704de0a280f584d28f991684549e919597f965bac13959b8a1
SSDEEP

12288:35Kh+FdKKBg6KBlP79e/NCVBHBOYE1cuJDP+zer9G38u5:3NGqgzBlBeoVBhOPuuZG3v

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  2024-06-23_f619363b3632038bbc1fb227a689d94d_hacktools_xiaoba
- Size
  
  816KB
- MD5
  
  f619363b3632038bbc1fb227a689d94d
- SHA1
  
  813ae9fceef08857b942a481fcde4944c541638e
- SHA256
  
  06cee146ebf89db835f1529bd43e75f992ea628059d1034baede05ded22a6f57
- SHA512
  
  1946b16395e51dfc0f909b6105f60829a60c5a383d4e559db410e2f362e88106c592ef08750f32704de0a280f584d28f991684549e919597f965bac13959b8a1
- SSDEEP
  
  12288:35Kh+FdKKBg6KBlP79e/NCVBHBOYE1cuJDP+zer9G38u5:3NGqgzBlBeoVBhOPuuZG3v
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence