Overview

overview

7

Static

static

1

URLScan

urlscan

1

https://www.bing.com...

windows10-2004-x64

6

https://www.bing.com...

windows11-21h2-x64

7

Resubmissions

12/10/2024, 12:47

241012-p1aq3a1dpd 4

12/10/2024, 12:40

241012-pwbgssvglr 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    https://www.bing.com/ck/a?!&&p=922e989d099cbf70JmltdHM9MTcyODY5MTIwMCZpZ3VpZD0yYTMwNjE3NS03MmE0LTYzYjYtMzNlMy03NDYzNzM4MzYyMjkmaW5zaWQ9NTIyMw&ptn=3&ver=2&hsh=3&fclid=2a306175-72a4-63b6-33e3-746373836229&psq=monoxide+virus+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0tvbnNreWx1eC9Nb25veGlkZQ&ntb=1

  • Sample

    241012-pwbgssvglr

Score
7/10
bootkitdiscoveryexecutionpersistence

Malware Config

Targets

    • Target

      https://www.bing.com/ck/a?!&&p=922e989d099cbf70JmltdHM9MTcyODY5MTIwMCZpZ3VpZD0yYTMwNjE3NS03MmE0LTYzYjYtMzNlMy03NDYzNzM4MzYyMjkmaW5zaWQ9NTIyMw&ptn=3&ver=2&hsh=3&fclid=2a306175-72a4-63b6-33e3-746373836229&psq=monoxide+virus+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0tvbnNreWx1eC9Nb25veGlkZQ&ntb=1

    Score
    7/10
    discoverybootkitexecutionpersistence

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks