Overview

overview

7

Static

static

3

ea7b6fd09b...e1.exe

windows7-x64

7

ea7b6fd09b...e1.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ea7b6fd09b74780bb01624121ef0f0137c1c5d42a91d26c2812d1c65e358bae1

  • Size

    4.8MB

  • Sample

    240921-rsjecaxbqm

  • MD5

    06a727bd632c8fdf930608158cf2811f

  • SHA1

    cbca198b367ed9f1dc1bc261b14cf0f2332f2aec

  • SHA256

    ea7b6fd09b74780bb01624121ef0f0137c1c5d42a91d26c2812d1c65e358bae1

  • SHA512

    53870ac4ac7d175edc9ff6a525d6ab936a8ed8e63b114998415f3b93f1ca666c51a107e0a1a2e388ebe9ce1efd995403e23b7f13f9a63ab43fab5cfc298cf618

  • SSDEEP

    98304:uVeM4VwHuokyfn8PGcx2HynIiprw0F80XZsB3w:cAVw3kx2SnIe84E3w

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      ea7b6fd09b74780bb01624121ef0f0137c1c5d42a91d26c2812d1c65e358bae1

    • Size

      4.8MB

    • MD5

      06a727bd632c8fdf930608158cf2811f

    • SHA1

      cbca198b367ed9f1dc1bc261b14cf0f2332f2aec

    • SHA256

      ea7b6fd09b74780bb01624121ef0f0137c1c5d42a91d26c2812d1c65e358bae1

    • SHA512

      53870ac4ac7d175edc9ff6a525d6ab936a8ed8e63b114998415f3b93f1ca666c51a107e0a1a2e388ebe9ce1efd995403e23b7f13f9a63ab43fab5cfc298cf618

    • SSDEEP

      98304:uVeM4VwHuokyfn8PGcx2HynIiprw0F80XZsB3w:cAVw3kx2SnIe84E3w

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks