Overview

overview

6

Static

static

1

sample.html

windows11-21h2-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sample

  • Size

    46KB

  • Sample

    240912-byltnathmn

  • MD5

    a992111ff6a41ebfa97a1a710027d449

  • SHA1

    96251eb55564954506eae7d436b544455a7bf6e0

  • SHA256

    d3f0db56efb81435c48e18dfa4b4f46aedf64917de9c238b9a00b0e641bef7fa

  • SHA512

    2f1a74eb01180a8f89499d436097cabc0cbece7637db7b510f7b0c1265e562a3dd26cca4e991c8e2b93a39f348760a86535de52cdfdca35389d202b7757fa0cf

  • SSDEEP

    768:S/g8jdiHwPiQsscqmTGsP5EU7FSulJUMtsVUOJEvU04sCYPi/JMSNjmmrwIurjc/:E3iQPiQsscqmTGy6U7FSulJUMts+WUNs

Score
6/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      sample

    • Size

      46KB

    • MD5

      a992111ff6a41ebfa97a1a710027d449

    • SHA1

      96251eb55564954506eae7d436b544455a7bf6e0

    • SHA256

      d3f0db56efb81435c48e18dfa4b4f46aedf64917de9c238b9a00b0e641bef7fa

    • SHA512

      2f1a74eb01180a8f89499d436097cabc0cbece7637db7b510f7b0c1265e562a3dd26cca4e991c8e2b93a39f348760a86535de52cdfdca35389d202b7757fa0cf

    • SSDEEP

      768:S/g8jdiHwPiQsscqmTGsP5EU7FSulJUMtsVUOJEvU04sCYPi/JMSNjmmrwIurjc/:E3iQPiQsscqmTGy6U7FSulJUMts+WUNs

    Score
    6/10
    bootkitdiscoverypersistence

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks