General

  • Target

    5208b9a80fdfd80c77cf23d8f3d7fb5aecf50ca1a32aca5069e4a5a1d23571c0

  • Size

    247KB

  • Sample

    241031-wvqcwstlhp

  • MD5

    878047377232a5c63ab8163e2bea9af8

  • SHA1

    d08be9f112ac81aa431ae26bc6cb0ee409a59690

  • SHA256

    5208b9a80fdfd80c77cf23d8f3d7fb5aecf50ca1a32aca5069e4a5a1d23571c0

  • SHA512

    5a0112491263a5a0548c87ffc714ee26bd1b63de460baab3c90bcb5245137b6eafde0f11108544837420190cfdbac4a92a922f13e518207f5df6f737ea82bef3

  • SSDEEP

    3072:I2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+TY:I0KgGwHqwOOELha+sm2D2+UhngufcF

Malware Config

Targets

    • Target

      5208b9a80fdfd80c77cf23d8f3d7fb5aecf50ca1a32aca5069e4a5a1d23571c0

    • Size

      247KB

    • MD5

      878047377232a5c63ab8163e2bea9af8

    • SHA1

      d08be9f112ac81aa431ae26bc6cb0ee409a59690

    • SHA256

      5208b9a80fdfd80c77cf23d8f3d7fb5aecf50ca1a32aca5069e4a5a1d23571c0

    • SHA512

      5a0112491263a5a0548c87ffc714ee26bd1b63de460baab3c90bcb5245137b6eafde0f11108544837420190cfdbac4a92a922f13e518207f5df6f737ea82bef3

    • SSDEEP

      3072:I2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+TY:I0KgGwHqwOOELha+sm2D2+UhngufcF

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks