8f7929b9d68cacd70a37feda32f5895b246fa102a5c8bcb3b16bf8cd60884f5e | Triage

Sharing

General

Target

ccc6079978cd84a2929962c708d11580N.exe
Size

94KB
Sample

240906-12wkps1ald
MD5

ccc6079978cd84a2929962c708d11580
SHA1

dede0d997dcff8c55f5e80c8d3429222558788c7
SHA256

8f7929b9d68cacd70a37feda32f5895b246fa102a5c8bcb3b16bf8cd60884f5e
SHA512

e71a58ea30232ec845909d137192ad35c7db8a88de3d942ebde5643654c75aaedb8cd1e97ba5c57ab9ee422ecede688c744baf7d34e0c173924e886c3b0616f5
SSDEEP

1536:t7nMYYRHXA0iDjub+GOjXS0RrQxHrjmH:F8JwDjuaHS09QxO

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  ccc6079978cd84a2929962c708d11580N.exe
- Size
  
  94KB
- MD5
  
  ccc6079978cd84a2929962c708d11580
- SHA1
  
  dede0d997dcff8c55f5e80c8d3429222558788c7
- SHA256
  
  8f7929b9d68cacd70a37feda32f5895b246fa102a5c8bcb3b16bf8cd60884f5e
- SHA512
  
  e71a58ea30232ec845909d137192ad35c7db8a88de3d942ebde5643654c75aaedb8cd1e97ba5c57ab9ee422ecede688c744baf7d34e0c173924e886c3b0616f5
- SSDEEP
  
  1536:t7nMYYRHXA0iDjub+GOjXS0RrQxHrjmH:F8JwDjuaHS09QxO
Score

6^/10

bootkit discovery persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2