Overview

overview

8

Static

static

3

Counter-Strike.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Counter-Strike.exe

  • Size

    265.2MB

  • Sample

    240908-f5zrba1ekc

  • MD5

    37667601ee4b53183145118c5751330e

  • SHA1

    f42d970dc4b239ebb34277f96dea5b0a941d6ca9

  • SHA256

    0d7bc42c56b0f0ee4bbf6e2178db5adbf145295ba4e5dee7532e1c0858ea3fe3

  • SHA512

    6c7bd24eac7d5e0474ecb5583f8d66c98b5bad91cd5c2a6b26d06142a5ce0404ab0314f095ccf9751f04db27337a42b21634265364524e55689c92ce46aecf48

  • SSDEEP

    3145728:9fjTxdljCmzc15qJPPZOnJlMKbAhMslm88ayBurKCGk1NxRJg8jKxePjAxxHfOnp:d1D8qJ3EAhHmbFBXk1nXPuAjYeKt79O

Score
8/10
bootkitdiscoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      Counter-Strike.exe

    • Size

      265.2MB

    • MD5

      37667601ee4b53183145118c5751330e

    • SHA1

      f42d970dc4b239ebb34277f96dea5b0a941d6ca9

    • SHA256

      0d7bc42c56b0f0ee4bbf6e2178db5adbf145295ba4e5dee7532e1c0858ea3fe3

    • SHA512

      6c7bd24eac7d5e0474ecb5583f8d66c98b5bad91cd5c2a6b26d06142a5ce0404ab0314f095ccf9751f04db27337a42b21634265364524e55689c92ce46aecf48

    • SSDEEP

      3145728:9fjTxdljCmzc15qJPPZOnJlMKbAhMslm88ayBurKCGk1NxRJg8jKxePjAxxHfOnp:d1D8qJ3EAhHmbFBXk1nXPuAjYeKt79O

    Score
    8/10
    bootkitdiscoveryevasionpersistencetrojan

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Network Service Discovery

      Attempt to gather information on host's network.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks