Overview

overview

7

Static

static

3

963981951f...a0.exe

windows7-x64

7

963981951f...a0.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    963981951f85dec5913a2f844566bdad0172a90deb105e0cb3ce55f31a1795a0

  • Size

    4.8MB

  • Sample

    240906-vz39wayeqj

  • MD5

    d2fe42cdcac3715597fb9243188c9292

  • SHA1

    b2f8c9d0806f6b5ef94667057a9f26dcb1700e9e

  • SHA256

    963981951f85dec5913a2f844566bdad0172a90deb105e0cb3ce55f31a1795a0

  • SHA512

    a9acf10773580cbd24335c8f53aa3bfd5b8a8ae45c1fa3c2e6bef956359bb821890e94c89af3aad6314e607fb602d0296f1f9d920fe8e05a4b86f3a63a7cd824

  • SSDEEP

    98304:JVeM4VwHuokyfz8PGcx2HynIiprw0F80XZqP4:/AVwDkx2SnIe84qP4

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      963981951f85dec5913a2f844566bdad0172a90deb105e0cb3ce55f31a1795a0

    • Size

      4.8MB

    • MD5

      d2fe42cdcac3715597fb9243188c9292

    • SHA1

      b2f8c9d0806f6b5ef94667057a9f26dcb1700e9e

    • SHA256

      963981951f85dec5913a2f844566bdad0172a90deb105e0cb3ce55f31a1795a0

    • SHA512

      a9acf10773580cbd24335c8f53aa3bfd5b8a8ae45c1fa3c2e6bef956359bb821890e94c89af3aad6314e607fb602d0296f1f9d920fe8e05a4b86f3a63a7cd824

    • SSDEEP

      98304:JVeM4VwHuokyfz8PGcx2HynIiprw0F80XZqP4:/AVwDkx2SnIe84qP4

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks