Overview

overview

7

Static

static

3

7125b89c05...59.exe

windows7-x64

7

7125b89c05...59.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7125b89c05b31cf9b2493410069468d731b3e4e9c496aa03be20357a9ba5f859

  • Size

    9.1MB

  • Sample

    240826-ed4eratblc

  • MD5

    5541b3b95d04ecadf8982293fb054e07

  • SHA1

    46bcbfd042bd876fb056a97d67564f49ad9873ec

  • SHA256

    7125b89c05b31cf9b2493410069468d731b3e4e9c496aa03be20357a9ba5f859

  • SHA512

    5d360f51c63a6883d8d12d72fcd1c671c7fb11f82792fe15cbba674e170f90591b660604b9d3419b33b2c49f8873ef952037358aa1103095a147902b32c529fb

  • SSDEEP

    196608:U4iEHq6LsCc+eU8NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNU:K6LsCc+sNNNNNNNNNNNNNNNNNNNNNNNi

Score
7/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      7125b89c05b31cf9b2493410069468d731b3e4e9c496aa03be20357a9ba5f859

    • Size

      9.1MB

    • MD5

      5541b3b95d04ecadf8982293fb054e07

    • SHA1

      46bcbfd042bd876fb056a97d67564f49ad9873ec

    • SHA256

      7125b89c05b31cf9b2493410069468d731b3e4e9c496aa03be20357a9ba5f859

    • SHA512

      5d360f51c63a6883d8d12d72fcd1c671c7fb11f82792fe15cbba674e170f90591b660604b9d3419b33b2c49f8873ef952037358aa1103095a147902b32c529fb

    • SSDEEP

      196608:U4iEHq6LsCc+eU8NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNU:K6LsCc+sNNNNNNNNNNNNNNNNNNNNNNNi

    Score
    7/10
    bootkitdiscoverypersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks