Overview

overview

7

Static

static

3

5fdfefbac6...95.exe

windows7-x64

7

5fdfefbac6...95.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5fdfefbac6c0791fb3d9f87edb1f891ef918cba8a51647982b846517e5339d95

  • Size

    4.8MB

  • Sample

    240909-tg4bgsyhma

  • MD5

    91466d749c9e0f948adb71261c7948f1

  • SHA1

    2664bf46badc3ef55589f2524e52569390af2f2b

  • SHA256

    5fdfefbac6c0791fb3d9f87edb1f891ef918cba8a51647982b846517e5339d95

  • SHA512

    57251ab7045d58a4b90e6c3598fff913f4c85bc90a4487dabc04b16a2a12e39fcf305f9ec20e8cf4ea3a0e526e1d7a6cfbb3171269c087c3752ff1da8ef78664

  • SSDEEP

    98304:cVeM4VwHuokyfK8PGcx2HynIiprw0F80XZeGR:6AVw6kx2SnIe84eGR

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      5fdfefbac6c0791fb3d9f87edb1f891ef918cba8a51647982b846517e5339d95

    • Size

      4.8MB

    • MD5

      91466d749c9e0f948adb71261c7948f1

    • SHA1

      2664bf46badc3ef55589f2524e52569390af2f2b

    • SHA256

      5fdfefbac6c0791fb3d9f87edb1f891ef918cba8a51647982b846517e5339d95

    • SHA512

      57251ab7045d58a4b90e6c3598fff913f4c85bc90a4487dabc04b16a2a12e39fcf305f9ec20e8cf4ea3a0e526e1d7a6cfbb3171269c087c3752ff1da8ef78664

    • SSDEEP

      98304:cVeM4VwHuokyfK8PGcx2HynIiprw0F80XZeGR:6AVw6kx2SnIe84eGR

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks