Overview

overview

6

Static

static

1

kaspersky4...57.exe

windows7-x64

6

kaspersky4...57.exe

windows10-1703-x64

6

kaspersky4...57.exe

windows7-x64

6

kaspersky4...57.exe

windows10-2004-x64

6

kaspersky4...57.exe

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    kaspersky4win202121.16.6.467ru_45357.exe

  • Size

    4.3MB

  • Sample

    240710-r7sasswejb

  • MD5

    63c9a22c500df9925f2e513ae1091653

  • SHA1

    bc93f45c412173045c0e39cb1b6a622c52669de0

  • SHA256

    47f5ce81ce33612610a6efc353a0735a4baf8486a898d7eceadb8a58d2415dfc

  • SHA512

    1661a5a4bc12b96bd3b769ea7619a1c62ec009a3df74d6f605c9d3741234a37d89acfa05f58223195e6e0537d94294a93773b9d96c05d6536415b9e756b6ba83

  • SSDEEP

    98304:EO/RG67kIN84klIci68xyDC2YmoieSoaSiHFnI6ts3/8:b724kDi6s2YBieS96/8

Score
6/10
bootkitevasionpersistencetrojan

Malware Config

Targets

    • Target

      kaspersky4win202121.16.6.467ru_45357.exe

    • Size

      4.3MB

    • MD5

      63c9a22c500df9925f2e513ae1091653

    • SHA1

      bc93f45c412173045c0e39cb1b6a622c52669de0

    • SHA256

      47f5ce81ce33612610a6efc353a0735a4baf8486a898d7eceadb8a58d2415dfc

    • SHA512

      1661a5a4bc12b96bd3b769ea7619a1c62ec009a3df74d6f605c9d3741234a37d89acfa05f58223195e6e0537d94294a93773b9d96c05d6536415b9e756b6ba83

    • SSDEEP

      98304:EO/RG67kIN84klIci68xyDC2YmoieSoaSiHFnI6ts3/8:b724kDi6s2YBieS96/8

    Score
    6/10
    bootkitevasionpersistencetrojan

    • Checks whether UAC is enabled

      evasiontrojan

    • Downloads MZ/PE file

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2behavioral3behavioral4behavioral5

MITRE ATT&CK Enterprise v15

Tasks