0dbc254fb42ccb7eab3122ec98798233d83327b2d19e2a45706cb79101a843e1 | Triage

Sharing

General

Target

2024-07-27_678507e1459f47a4d77aace80d42d52d_magniber
Size

1.6MB
Sample

240727-egva9awbpn
MD5

678507e1459f47a4d77aace80d42d52d
SHA1

80703904ffc940857ec8a10aca910b4eb26c6965
SHA256

0dbc254fb42ccb7eab3122ec98798233d83327b2d19e2a45706cb79101a843e1
SHA512

087d046dc4fb5e2bfb74bb16fa56e7d16c7f5aad19e4f14992dc167590f270d2d1b8da7e44172765999964a387488e0f64a813671e759d5a8bd958ed167fbe93
SSDEEP

49152:QN2OR9WF/G/ooooEYOKOhBVWKoJhymxwSe4v:i2FF/GYhBVWKoi3

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  2024-07-27_678507e1459f47a4d77aace80d42d52d_magniber
- Size
  
  1.6MB
- MD5
  
  678507e1459f47a4d77aace80d42d52d
- SHA1
  
  80703904ffc940857ec8a10aca910b4eb26c6965
- SHA256
  
  0dbc254fb42ccb7eab3122ec98798233d83327b2d19e2a45706cb79101a843e1
- SHA512
  
  087d046dc4fb5e2bfb74bb16fa56e7d16c7f5aad19e4f14992dc167590f270d2d1b8da7e44172765999964a387488e0f64a813671e759d5a8bd958ed167fbe93
- SSDEEP
  
  49152:QN2OR9WF/G/ooooEYOKOhBVWKoJhymxwSe4v:i2FF/GYhBVWKoi3
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence