General

  • Target

    69c280109bcbf694e9070b8c0a2a7de6d078d18be220ea47c7591f69bb21d4ec

  • Size

    247KB

  • Sample

    241031-wq97hasdmq

  • MD5

    cb881fa88d46dac31a2b3dd4e19948cb

  • SHA1

    63d186ccdac8204c521a7dfe8f1fa4ab79161ce0

  • SHA256

    69c280109bcbf694e9070b8c0a2a7de6d078d18be220ea47c7591f69bb21d4ec

  • SHA512

    1b5555f6ff397d0d13296940ece1a35c77a14954b91eeb9a6b0e19dc600736fea920f2404ce7e25a0bfd0f855861f2a23890bd17a274ba9fb68b4c2d72bf2121

  • SSDEEP

    3072:Z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+T3:Z0KgGwHqwOOELha+sm2D2+Uhnguy8C

Malware Config

Targets

    • Target

      69c280109bcbf694e9070b8c0a2a7de6d078d18be220ea47c7591f69bb21d4ec

    • Size

      247KB

    • MD5

      cb881fa88d46dac31a2b3dd4e19948cb

    • SHA1

      63d186ccdac8204c521a7dfe8f1fa4ab79161ce0

    • SHA256

      69c280109bcbf694e9070b8c0a2a7de6d078d18be220ea47c7591f69bb21d4ec

    • SHA512

      1b5555f6ff397d0d13296940ece1a35c77a14954b91eeb9a6b0e19dc600736fea920f2404ce7e25a0bfd0f855861f2a23890bd17a274ba9fb68b4c2d72bf2121

    • SSDEEP

      3072:Z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+T3:Z0KgGwHqwOOELha+sm2D2+Uhnguy8C

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks