Overview

overview

7

Static

static

1

m8XaS3.html

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    m8XaS3

  • Size

    506B

  • Sample

    240810-b7pa5szgkp

  • MD5

    eacf8c294bfb4784cc5d2c6d87ca963a

  • SHA1

    db4814cfe560ffc0f46503806d700ba08426f94c

  • SHA256

    d5bef9765f9a23156e009755ba33052a5a1f7003640d7a3ba5f7ee09c45ce310

  • SHA512

    42a81a3fd0ad71e554e166664f3c1e1d151d23ab881abe5f42ee94519212fd706801f7fb93cc9aec1bdedcc27e9dc151c497d845a1ca6e4f09888bcd0a72f9b0

Score
7/10
bootkitdiscoveryexecutionpersistence

Malware Config

Targets

    • Target

      m8XaS3

    • Size

      506B

    • MD5

      eacf8c294bfb4784cc5d2c6d87ca963a

    • SHA1

      db4814cfe560ffc0f46503806d700ba08426f94c

    • SHA256

      d5bef9765f9a23156e009755ba33052a5a1f7003640d7a3ba5f7ee09c45ce310

    • SHA512

      42a81a3fd0ad71e554e166664f3c1e1d151d23ab881abe5f42ee94519212fd706801f7fb93cc9aec1bdedcc27e9dc151c497d845a1ca6e4f09888bcd0a72f9b0

    Score
    7/10
    bootkitdiscoveryexecutionpersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks