Overview

overview

8

Static

static

3

20240905ef...er.exe

windows7-x64

8

20240905ef...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    20240905ef54d549da90941201b520329ac93de5avoslocker

  • Size

    4.3MB

  • Sample

    240905-gsqhjsvgpe

  • MD5

    ef54d549da90941201b520329ac93de5

  • SHA1

    51308526c58a643e6abe035c5695797c9b4bb4f9

  • SHA256

    1333eef4671f60bd4dce8dbd1ddaa59621ef2771425b8ae599e970fbb10e0550

  • SHA512

    fd82f403f916d753e412531b2190693d26fe88e85c749b45db77cad066be9145043fd3d7140917dfdb39028f0341bd2267a2b1d5722713e7e1808dea67d169cc

  • SSDEEP

    98304:kpq/d8kCBIlMyQjujDW9tBcg2jGqwwAydCy7Bcb7kSL1w5QuN7NkB3tiXy:tc35ujyp8jGqwwRO4NSNtmy

Score
8/10
bootkitdiscoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      20240905ef54d549da90941201b520329ac93de5avoslocker

    • Size

      4.3MB

    • MD5

      ef54d549da90941201b520329ac93de5

    • SHA1

      51308526c58a643e6abe035c5695797c9b4bb4f9

    • SHA256

      1333eef4671f60bd4dce8dbd1ddaa59621ef2771425b8ae599e970fbb10e0550

    • SHA512

      fd82f403f916d753e412531b2190693d26fe88e85c749b45db77cad066be9145043fd3d7140917dfdb39028f0341bd2267a2b1d5722713e7e1808dea67d169cc

    • SSDEEP

      98304:kpq/d8kCBIlMyQjujDW9tBcg2jGqwwAydCy7Bcb7kSL1w5QuN7NkB3tiXy:tc35ujyp8jGqwwRO4NSNtmy

    Score
    8/10
    bootkitdiscoveryevasionpersistencetrojan

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks