ac8e8873bac8b5d6bfb2ea0ee84bf595a1796d66b0ded1b6cdcc831745d33d50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac8e8873bac8b5d6bfb2ea0ee84bf595a1796d66b0ded1b6cdcc831745d33d50
Size

580KB
Sample

240818-t7l5wstara
MD5

9673c273a341d9ce978abea90a7b175d
SHA1

a362206f625f7554ed1d1f456d7047cacd330e0a
SHA256

ac8e8873bac8b5d6bfb2ea0ee84bf595a1796d66b0ded1b6cdcc831745d33d50
SHA512

05b6c3d3b3fbe5122943cdc3abf7eb878ce2420bafa752e6a07ac874e535d7c1ee861bb2ec65cdb5a578d23784d007da7056673c53a75eb63e21d0f80271fe18
SSDEEP

6144:f3BUc6WW6I7UgNpfnTxvRCQtU8VZ2GpgS/5/mQlDxzF6mrm:f3yd6mJT5RHpi+P5V5Fv

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  ac8e8873bac8b5d6bfb2ea0ee84bf595a1796d66b0ded1b6cdcc831745d33d50
- Size
  
  580KB
- MD5
  
  9673c273a341d9ce978abea90a7b175d
- SHA1
  
  a362206f625f7554ed1d1f456d7047cacd330e0a
- SHA256
  
  ac8e8873bac8b5d6bfb2ea0ee84bf595a1796d66b0ded1b6cdcc831745d33d50
- SHA512
  
  05b6c3d3b3fbe5122943cdc3abf7eb878ce2420bafa752e6a07ac874e535d7c1ee861bb2ec65cdb5a578d23784d007da7056673c53a75eb63e21d0f80271fe18
- SSDEEP
  
  6144:f3BUc6WW6I7UgNpfnTxvRCQtU8VZ2GpgS/5/mQlDxzF6mrm:f3yd6mJT5RHpi+P5V5Fv
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence