e5e29e2ddbd0c1c0b52b5693ecfe0172bbe6021df97e8e802ef6714b97c70db4 | Triage

Sharing

General

Target

e5e29e2ddbd0c1c0b52b5693ecfe0172bbe6021df97e8e802ef6714b97c70db4
Size

1.8MB
Sample

240809-bfvnvaxenc
MD5

21de981534af5306f499730281d230fc
SHA1

965f306fd81323b9bd582d9334ea58fc1840f0dc
SHA256

e5e29e2ddbd0c1c0b52b5693ecfe0172bbe6021df97e8e802ef6714b97c70db4
SHA512

7f27ee1cc4c715e1266ee68bb0b5d890e22486ab10197041ea479e318921b77b28c02c353123c27b5a622bbb50c114d0048802308f2fa93f8c556add22857dbf
SSDEEP

49152:xOZ0yvcF6QNEfn22cie2nVXdx14rD18LDPL/cah:xOZ0yvcF6QyTcieCVNn4rD18Xj/ca

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  e5e29e2ddbd0c1c0b52b5693ecfe0172bbe6021df97e8e802ef6714b97c70db4
- Size
  
  1.8MB
- MD5
  
  21de981534af5306f499730281d230fc
- SHA1
  
  965f306fd81323b9bd582d9334ea58fc1840f0dc
- SHA256
  
  e5e29e2ddbd0c1c0b52b5693ecfe0172bbe6021df97e8e802ef6714b97c70db4
- SHA512
  
  7f27ee1cc4c715e1266ee68bb0b5d890e22486ab10197041ea479e318921b77b28c02c353123c27b5a622bbb50c114d0048802308f2fa93f8c556add22857dbf
- SSDEEP
  
  49152:xOZ0yvcF6QNEfn22cie2nVXdx14rD18LDPL/cah:xOZ0yvcF6QyTcieCVNn4rD18Xj/ca
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence