General

  • Target

    6df60aa2eba459fdc247d11bde2501c79a432799a89370cfebe67a7de80c5cb3

  • Size

    255KB

  • Sample

    241031-pe4r1szjhr

  • MD5

    2633960d15cf6d84cb0dd59916076bec

  • SHA1

    3ed33054ee12af53a734331d03bebbe0b9afc772

  • SHA256

    6df60aa2eba459fdc247d11bde2501c79a432799a89370cfebe67a7de80c5cb3

  • SHA512

    db40db483820821d73fb8b062fcbc1fcc65a52b6833a7c328d61253ea73d049328e5e820c1ebfcd19596a3233ad4d7195f6f8970170f1f9a4a294320f0214d35

  • SSDEEP

    3072:BX5bx/ZvAtc0Udi+EhwPAD0JJa+tS5bRZnShxB6xY5LzqUC+8kz5m5pohjhEXn+R:BBxL0HwPXtShRZSExgQDknl

Malware Config

Targets

    • Target

      6df60aa2eba459fdc247d11bde2501c79a432799a89370cfebe67a7de80c5cb3

    • Size

      255KB

    • MD5

      2633960d15cf6d84cb0dd59916076bec

    • SHA1

      3ed33054ee12af53a734331d03bebbe0b9afc772

    • SHA256

      6df60aa2eba459fdc247d11bde2501c79a432799a89370cfebe67a7de80c5cb3

    • SHA512

      db40db483820821d73fb8b062fcbc1fcc65a52b6833a7c328d61253ea73d049328e5e820c1ebfcd19596a3233ad4d7195f6f8970170f1f9a4a294320f0214d35

    • SSDEEP

      3072:BX5bx/ZvAtc0Udi+EhwPAD0JJa+tS5bRZnShxB6xY5LzqUC+8kz5m5pohjhEXn+R:BBxL0HwPXtShRZSExgQDknl

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks