Overview

overview

7

Static

static

3

d9485bf7db...ba.exe

windows7-x64

7

d9485bf7db...ba.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d9485bf7db4a8ffb70cc904dadf2a0397284e6867e40d6edda5a8017c94f91ba

  • Size

    6.3MB

  • Sample

    240902-dakb2a1aqb

  • MD5

    75cb2a2f6b4e785677c8d2da0777941a

  • SHA1

    5392d4a39bdf253b8e2a2daa60722f9f86df66b3

  • SHA256

    d9485bf7db4a8ffb70cc904dadf2a0397284e6867e40d6edda5a8017c94f91ba

  • SHA512

    b1d28ff9787ec71f9ad36629c2fa1035473f383a38254074870f9c535d901c40e72597c9497b9e6bc89e07c20c4c8c82024ee4bfa17c284ca412f4d0798e2453

  • SSDEEP

    98304:Q1ROYXnwB6N/g2mCw6cB27OgUWZHw7saFCKuJJBAUZLRxU:0XwBjJff2sWGFCKsJV1xU

Score
7/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      d9485bf7db4a8ffb70cc904dadf2a0397284e6867e40d6edda5a8017c94f91ba

    • Size

      6.3MB

    • MD5

      75cb2a2f6b4e785677c8d2da0777941a

    • SHA1

      5392d4a39bdf253b8e2a2daa60722f9f86df66b3

    • SHA256

      d9485bf7db4a8ffb70cc904dadf2a0397284e6867e40d6edda5a8017c94f91ba

    • SHA512

      b1d28ff9787ec71f9ad36629c2fa1035473f383a38254074870f9c535d901c40e72597c9497b9e6bc89e07c20c4c8c82024ee4bfa17c284ca412f4d0798e2453

    • SSDEEP

      98304:Q1ROYXnwB6N/g2mCw6cB27OgUWZHw7saFCKuJJBAUZLRxU:0XwBjJff2sWGFCKsJV1xU

    Score
    7/10
    bootkitdiscoverypersistenceupx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks