General

  • Target

    6113541a3b8bfd049b1253e4a04369790bb9ce01907d8dbed99f47333d9a16ae

  • Size

    219KB

  • Sample

    241031-2624qawlfl

  • MD5

    4fdd1e0bbb1999a47845a08c3ecdabc2

  • SHA1

    82314bc7fafbb643e60140ca23bbebd9bb56c989

  • SHA256

    6113541a3b8bfd049b1253e4a04369790bb9ce01907d8dbed99f47333d9a16ae

  • SHA512

    90710c1f5f63a74230aba9e706230d3546141b7e511fefb9ccabfe23ba18eb75822a5b9e5fe5a402e39e79482f49aaadee9bfc3c48aa6b7e11327036428949e8

  • SSDEEP

    3072:U2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhWK0Ka:U0KgGwHqwOOELha+sm2D2+UhngNQK4d1

Malware Config

Targets

    • Target

      6113541a3b8bfd049b1253e4a04369790bb9ce01907d8dbed99f47333d9a16ae

    • Size

      219KB

    • MD5

      4fdd1e0bbb1999a47845a08c3ecdabc2

    • SHA1

      82314bc7fafbb643e60140ca23bbebd9bb56c989

    • SHA256

      6113541a3b8bfd049b1253e4a04369790bb9ce01907d8dbed99f47333d9a16ae

    • SHA512

      90710c1f5f63a74230aba9e706230d3546141b7e511fefb9ccabfe23ba18eb75822a5b9e5fe5a402e39e79482f49aaadee9bfc3c48aa6b7e11327036428949e8

    • SSDEEP

      3072:U2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhhWK0Ka:U0KgGwHqwOOELha+sm2D2+UhngNQK4d1

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks