Overview

overview

7

Static

static

3

c27ef7af8a...5b.exe

windows7-x64

7

c27ef7af8a...5b.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c27ef7af8a651118c8fff8b0f00cd5a622abb04f7c4b9d4836183a43fbb5a45b

  • Size

    4.8MB

  • Sample

    240907-jl1q2ssgpr

  • MD5

    9862462c01e6dff289bc8afdeb271781

  • SHA1

    51adb05ebca54e50923210c0a37890989d93c385

  • SHA256

    c27ef7af8a651118c8fff8b0f00cd5a622abb04f7c4b9d4836183a43fbb5a45b

  • SHA512

    a82818896e2097f13df8ab66e2d3946346775b4dac26d09f4cdbf6a0f414d89bb6635706a3fefbb553f023a6f468131682be37efeb3d6e16a565982196d1e9ff

  • SSDEEP

    98304:JVeM4VwHuokyfz8PGcx2HynIiprw0F80XZqPy:/AVwDkx2SnIe84qPy

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      c27ef7af8a651118c8fff8b0f00cd5a622abb04f7c4b9d4836183a43fbb5a45b

    • Size

      4.8MB

    • MD5

      9862462c01e6dff289bc8afdeb271781

    • SHA1

      51adb05ebca54e50923210c0a37890989d93c385

    • SHA256

      c27ef7af8a651118c8fff8b0f00cd5a622abb04f7c4b9d4836183a43fbb5a45b

    • SHA512

      a82818896e2097f13df8ab66e2d3946346775b4dac26d09f4cdbf6a0f414d89bb6635706a3fefbb553f023a6f468131682be37efeb3d6e16a565982196d1e9ff

    • SSDEEP

      98304:JVeM4VwHuokyfz8PGcx2HynIiprw0F80XZqPy:/AVwDkx2SnIe84qPy

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks