Overview

overview

7

Static

static

3

Bootstrapper.exe

windows7-x64

3

Bootstrapper.exe

windows10-2004-x64

7

Resubmissions

03/08/2024, 04:56 UTC

240803-fkvxmatfrn 3

03/08/2024, 04:46 UTC

240803-feadqstekl 7

03/08/2024, 04:43 UTC

240803-fcr6rstdqn 7

03/08/2024, 04:38 UTC

240803-e9w1jstdjq 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Bootstrapper.exe

  • Size

    795KB

  • Sample

    240803-e9w1jstdjq

  • MD5

    365971e549352a15e150b60294ec2e57

  • SHA1

    2932242b427e81b1b4ac8c11fb17793eae0939f7

  • SHA256

    faad2bc8e61b75e595a80ff2b6d150ff8b27187a8ba426cc1e5e38e193ab6d42

  • SHA512

    f7ba1353e880213a6bdf5bd1dfdfd42a0acf4066a540a502e8df8fec8eac7fb80b75aa52e68eca98be3f7701da48eb90758e5b94d72013d3dff05e0aaf27e938

  • SSDEEP

    12288:GYa9sBhIBdCdbX1USoeQDj/VNpA+dZIznBpGTEy:Pa98hIBdjSoeQDj/VNpZdZIznBpg

Score
7/10
discovery

Malware Config

Targets

    • Target

      Bootstrapper.exe

    • Size

      795KB

    • MD5

      365971e549352a15e150b60294ec2e57

    • SHA1

      2932242b427e81b1b4ac8c11fb17793eae0939f7

    • SHA256

      faad2bc8e61b75e595a80ff2b6d150ff8b27187a8ba426cc1e5e38e193ab6d42

    • SHA512

      f7ba1353e880213a6bdf5bd1dfdfd42a0acf4066a540a502e8df8fec8eac7fb80b75aa52e68eca98be3f7701da48eb90758e5b94d72013d3dff05e0aaf27e938

    • SSDEEP

      12288:GYa9sBhIBdCdbX1USoeQDj/VNpA+dZIznBpGTEy:Pa98hIBdjSoeQDj/VNpZdZIznBpg

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.