General
-
Target
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6
-
Size
247KB
-
Sample
241031-wktybsscqr
-
MD5
cb13d2379ef2cf7be53d8eb21add934a
-
SHA1
82bd93b2eb1744a13ef7ab944e1837c827df56c8
-
SHA256
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6
-
SHA512
adac50d44bf01a5ffcd25cd6fb78df382daa47e56181d850a31d5b34f22c263b2d647f1982778421ae48aa1c90002d8ba578b67855c8e41aec4f8728e55db03a
-
SSDEEP
3072:/2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TB:/0KgGwHqwOOELha+sm2D2+Uhnguy8w
Static task
static1
Behavioral task
behavioral1
Sample
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6
-
Size
247KB
-
MD5
cb13d2379ef2cf7be53d8eb21add934a
-
SHA1
82bd93b2eb1744a13ef7ab944e1837c827df56c8
-
SHA256
f71eef025be5641e9803bcf78b01a427b2863f2bbf792c27279a1b9681a43eb6
-
SHA512
adac50d44bf01a5ffcd25cd6fb78df382daa47e56181d850a31d5b34f22c263b2d647f1982778421ae48aa1c90002d8ba578b67855c8e41aec4f8728e55db03a
-
SSDEEP
3072:/2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TB:/0KgGwHqwOOELha+sm2D2+Uhnguy8w
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks for any installed AV software in registry
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1