313f287f730badacd93eca34def73ea262a91c2a1d420615dd04a85f51320012 | Triage

Sharing

General

Target

313f287f730badacd93eca34def73ea262a91c2a1d420615dd04a85f51320012N
Size

469KB
Sample

240919-l8kz8atekm
MD5

e45e529c7b21e3545cd755e667805ab0
SHA1

8ecdbb37a065e0fa2e0f8bd928fa27fa1fac2ab8
SHA256

313f287f730badacd93eca34def73ea262a91c2a1d420615dd04a85f51320012
SHA512

0ea56d188d3f3fd35f8aa9001f80550b60865d7fbdced8dd48bed168e5e6c5530e1ebe1ad2183bfdd535998e1207e9720606b9c58a8554e67037b54015b00e33
SSDEEP

12288:t6vDs+l3IKLz3xYsgtQolEf04AWTZ5EHTJuCjw4Ae:t6vnIKL7xYs0nEHAWTZutuC8G

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  313f287f730badacd93eca34def73ea262a91c2a1d420615dd04a85f51320012N
- Size
  
  469KB
- MD5
  
  e45e529c7b21e3545cd755e667805ab0
- SHA1
  
  8ecdbb37a065e0fa2e0f8bd928fa27fa1fac2ab8
- SHA256
  
  313f287f730badacd93eca34def73ea262a91c2a1d420615dd04a85f51320012
- SHA512
  
  0ea56d188d3f3fd35f8aa9001f80550b60865d7fbdced8dd48bed168e5e6c5530e1ebe1ad2183bfdd535998e1207e9720606b9c58a8554e67037b54015b00e33
- SSDEEP
  
  12288:t6vDs+l3IKLz3xYsgtQolEf04AWTZ5EHTJuCjw4Ae:t6vnIKL7xYs0nEHAWTZutuC8G
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence