General

  • Target

    4eacc01f618bee66e92e7d2e8f2f043efb4225cde593de48c921a53407c0a755

  • Size

    2.3MB

  • Sample

    241031-m71vqavqay

  • MD5

    499f89d1aea74eaae62bfd2acb892a45

  • SHA1

    6f9d4f0d3ecd3e588131ac9b723c858962c1edf4

  • SHA256

    4eacc01f618bee66e92e7d2e8f2f043efb4225cde593de48c921a53407c0a755

  • SHA512

    2dfb524f7d3da5a76c2c3ef296446e8e43c8b8f03a29319955d45836e7a4c4a1abda21e9ec25e1bf6a9bac8e7edcead7e81014be8744f2b6f97986bb2309e762

  • SSDEEP

    49152:j9C95d76suD+XFA+5aa5i50PYDwyt64fQyHbbf08xwmaQFur:j9CvesuDRna5JPYGy7bMpL

Malware Config

Targets

    • Target

      4eacc01f618bee66e92e7d2e8f2f043efb4225cde593de48c921a53407c0a755

    • Size

      2.3MB

    • MD5

      499f89d1aea74eaae62bfd2acb892a45

    • SHA1

      6f9d4f0d3ecd3e588131ac9b723c858962c1edf4

    • SHA256

      4eacc01f618bee66e92e7d2e8f2f043efb4225cde593de48c921a53407c0a755

    • SHA512

      2dfb524f7d3da5a76c2c3ef296446e8e43c8b8f03a29319955d45836e7a4c4a1abda21e9ec25e1bf6a9bac8e7edcead7e81014be8744f2b6f97986bb2309e762

    • SSDEEP

      49152:j9C95d76suD+XFA+5aa5i50PYDwyt64fQyHbbf08xwmaQFur:j9CvesuDRna5JPYGy7bMpL

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks whether UAC is enabled

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks