General

  • Target

    1ace114e32adabb75b39ffc994b750c7c22f2ba763a88889590604693ed80b21

  • Size

    247KB

  • Sample

    241031-12rlravalk

  • MD5

    a169f7ececce9b63b079d68023164427

  • SHA1

    625ce0736dba43b7ce899b3b0eb02ac06d69c747

  • SHA256

    1ace114e32adabb75b39ffc994b750c7c22f2ba763a88889590604693ed80b21

  • SHA512

    b06b8ecba3913064cf1dfafbb639f94cb9feb5721aa236053444185c5dd196b5f24555350ea3202e2b0df2f5d9e47e826710ac4315738fb3f05fcc0b348de3fc

  • SSDEEP

    3072:02RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TC:00KgGwHqwOOELha+sm2D2+Uhnguy8H

Malware Config

Targets

    • Target

      1ace114e32adabb75b39ffc994b750c7c22f2ba763a88889590604693ed80b21

    • Size

      247KB

    • MD5

      a169f7ececce9b63b079d68023164427

    • SHA1

      625ce0736dba43b7ce899b3b0eb02ac06d69c747

    • SHA256

      1ace114e32adabb75b39ffc994b750c7c22f2ba763a88889590604693ed80b21

    • SHA512

      b06b8ecba3913064cf1dfafbb639f94cb9feb5721aa236053444185c5dd196b5f24555350ea3202e2b0df2f5d9e47e826710ac4315738fb3f05fcc0b348de3fc

    • SSDEEP

      3072:02RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TC:00KgGwHqwOOELha+sm2D2+Uhnguy8H

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks