c547c2c34966ad47045be3dc4e5c1bb2f4d34c72f6ad8b0bc52ca54da2c1252e | Triage

Submit
Reports

Overview

overview

7

Static

static

1

outbyte-ca...up.exe

windows11-21h2-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

outbyte-camomile-setup.exe
Size

14.1MB
Sample

240906-ls1qqszblk
MD5

ff281637b08f3df115970a965e9df23e
SHA1

5fc7d68f6d828b580000a8b96884605ec345ec96
SHA256

c547c2c34966ad47045be3dc4e5c1bb2f4d34c72f6ad8b0bc52ca54da2c1252e
SHA512

6c1b61ba0b49005e3b1da8ff696ea79d860e4a8562b62106d0743726666a55852e2df4952b7b58de74cf2b803687d6aa71bc1a10cbf3f323b282505d5814cd38
SSDEEP

393216:2ZlI+zfXsvFZyblNMj8lAMy11MNSqDBeBPhHof:24+zfXs3yboSq1ybDBe3of

Score

7^/10

bootkit discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

outbyte-camomile-setup.exe

Resource

win11-20240802-en

bootkit discovery persistence

windows11-21h2-x64

17 signatures

150 seconds

Malware Config

Targets

- Target
  
  outbyte-camomile-setup.exe
- Size
  
  14.1MB
- MD5
  
  ff281637b08f3df115970a965e9df23e
- SHA1
  
  5fc7d68f6d828b580000a8b96884605ec345ec96
- SHA256
  
  c547c2c34966ad47045be3dc4e5c1bb2f4d34c72f6ad8b0bc52ca54da2c1252e
- SHA512
  
  6c1b61ba0b49005e3b1da8ff696ea79d860e4a8562b62106d0743726666a55852e2df4952b7b58de74cf2b803687d6aa71bc1a10cbf3f323b282505d5814cd38
- SSDEEP
  
  393216:2ZlI+zfXsvFZyblNMj8lAMy11MNSqDBeBPhHof:24+zfXs3yboSq1ybDBe3of
Score

7^/10

bootkit discovery persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

© 2018-2025

Terms | Privacy