Overview

overview

7

Static

static

3

995151fa87...69.exe

windows7-x64

7

995151fa87...69.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    995151fa87858b91629c8ef294331a6be336cc8e13ac80b5a8409082082c0b69

  • Size

    4.8MB

  • Sample

    240927-zppe7a1fkg

  • MD5

    c3bb0b6f2aebe7dc49c843dec414c8f6

  • SHA1

    8cb89b360813a5d1ba07704fa72762d3be3e9bbb

  • SHA256

    995151fa87858b91629c8ef294331a6be336cc8e13ac80b5a8409082082c0b69

  • SHA512

    81d16c047f4c22bd4bfdef7f07bbd8fe131f28d577a85f139f0a5edd63eb621434a144c5749a4e2458eac1a7833f260e5867e10fadc9170fa076ffeb1122b0d2

  • SSDEEP

    98304:RVeM4VwHuokyfO8PGcx2HynIiprw0F80XZMfjb:XAVw+kx2SnIe84Cjb

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      995151fa87858b91629c8ef294331a6be336cc8e13ac80b5a8409082082c0b69

    • Size

      4.8MB

    • MD5

      c3bb0b6f2aebe7dc49c843dec414c8f6

    • SHA1

      8cb89b360813a5d1ba07704fa72762d3be3e9bbb

    • SHA256

      995151fa87858b91629c8ef294331a6be336cc8e13ac80b5a8409082082c0b69

    • SHA512

      81d16c047f4c22bd4bfdef7f07bbd8fe131f28d577a85f139f0a5edd63eb621434a144c5749a4e2458eac1a7833f260e5867e10fadc9170fa076ffeb1122b0d2

    • SSDEEP

      98304:RVeM4VwHuokyfO8PGcx2HynIiprw0F80XZMfjb:XAVw+kx2SnIe84Cjb

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks