b7c1f030ac60c23504d38c3e5b12510eac7f6d49b1e45263c3dc448123763c54 | Triage

Sharing

General

Target

b7c1f030ac60c23504d38c3e5b12510eac7f6d49b1e45263c3dc448123763c54
Size

9.4MB
Sample

240703-xbmy4athlb
MD5

7d2ac064ce1cae2340403325738ba79c
SHA1

27b6f76ec966909a55c770632e3f05c75c16af58
SHA256

b7c1f030ac60c23504d38c3e5b12510eac7f6d49b1e45263c3dc448123763c54
SHA512

2f7061d915990357f7d0805a0c183b9e431a61c17358ed423dab80849c83f1b4745da3805ac1c66744b4b2ec99ce50969acbb4a099fa6b8cd859f815a81b2cb8
SSDEEP

196608:k80uhMTk+epZOJ26ZhLv4QHU+USyErgtFcdxkON4I+I8lrA2f6jI:klklZM22T4Q/yugtF+kIkrAb0

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  b7c1f030ac60c23504d38c3e5b12510eac7f6d49b1e45263c3dc448123763c54
- Size
  
  9.4MB
- MD5
  
  7d2ac064ce1cae2340403325738ba79c
- SHA1
  
  27b6f76ec966909a55c770632e3f05c75c16af58
- SHA256
  
  b7c1f030ac60c23504d38c3e5b12510eac7f6d49b1e45263c3dc448123763c54
- SHA512
  
  2f7061d915990357f7d0805a0c183b9e431a61c17358ed423dab80849c83f1b4745da3805ac1c66744b4b2ec99ce50969acbb4a099fa6b8cd859f815a81b2cb8
- SSDEEP
  
  196608:k80uhMTk+epZOJ26ZhLv4QHU+USyErgtFcdxkON4I+I8lrA2f6jI:klklZM22T4Q/yugtF+kIkrAb0
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence