2f2106ee3e40fc4b7a7065f5630ad6176d7c9c04abb88642e298a9929750a56f | Triage

Sharing

General

Target

2f2106ee3e40fc4b7a7065f5630ad6176d7c9c04abb88642e298a9929750a56f
Size

487KB
Sample

240705-qlgrhayfnp
MD5

73d4298a641e454770268aff5e28131d
SHA1

e4ba4e0ff723776fe392d0ad3e4c7b2f0fd20753
SHA256

2f2106ee3e40fc4b7a7065f5630ad6176d7c9c04abb88642e298a9929750a56f
SHA512

6f333837123e78752a1a27e4b51fed634fa54aa02a0a0798e2dc6dc91d4e4ae1bc9d53ab7b07f40736ff496f3c0e31c9db328b859bccac8415eaa407a0d6fa7d
SSDEEP

12288:J2W8XvjqWaZYLOvAwX/R+x3744k6OxiL2rpaq:YVX96vhvQx3M4k6O8Crpaq

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  2f2106ee3e40fc4b7a7065f5630ad6176d7c9c04abb88642e298a9929750a56f
- Size
  
  487KB
- MD5
  
  73d4298a641e454770268aff5e28131d
- SHA1
  
  e4ba4e0ff723776fe392d0ad3e4c7b2f0fd20753
- SHA256
  
  2f2106ee3e40fc4b7a7065f5630ad6176d7c9c04abb88642e298a9929750a56f
- SHA512
  
  6f333837123e78752a1a27e4b51fed634fa54aa02a0a0798e2dc6dc91d4e4ae1bc9d53ab7b07f40736ff496f3c0e31c9db328b859bccac8415eaa407a0d6fa7d
- SSDEEP
  
  12288:J2W8XvjqWaZYLOvAwX/R+x3744k6OxiL2rpaq:YVX96vhvQx3M4k6O8Crpaq
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence