General

  • Target

    0bd456777be4c29ae830a8ce789fca15425364f6fe6abc1ca74ff6b9efd4c04f

  • Size

    247KB

  • Sample

    241031-2yh1wathmf

  • MD5

    1a1f85dba3716f26208fffa45df813d6

  • SHA1

    b9ff1b488b91a97f9c8fa0c1af05c8b765821c38

  • SHA256

    0bd456777be4c29ae830a8ce789fca15425364f6fe6abc1ca74ff6b9efd4c04f

  • SHA512

    265af96f226a3d6e6133acdadd89bdba71f1f5a7b8369f8359d282240f22435b5640385e2b021ab6e4cf2d240f11e988f3e443cc12ae86876936aa1626ebd40c

  • SSDEEP

    3072:z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TD:z0KgGwHqwOOELha+sm2D2+UhnguyRR

Malware Config

Targets

    • Target

      0bd456777be4c29ae830a8ce789fca15425364f6fe6abc1ca74ff6b9efd4c04f

    • Size

      247KB

    • MD5

      1a1f85dba3716f26208fffa45df813d6

    • SHA1

      b9ff1b488b91a97f9c8fa0c1af05c8b765821c38

    • SHA256

      0bd456777be4c29ae830a8ce789fca15425364f6fe6abc1ca74ff6b9efd4c04f

    • SHA512

      265af96f226a3d6e6133acdadd89bdba71f1f5a7b8369f8359d282240f22435b5640385e2b021ab6e4cf2d240f11e988f3e443cc12ae86876936aa1626ebd40c

    • SSDEEP

      3072:z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TD:z0KgGwHqwOOELha+sm2D2+UhnguyRR

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks