General

  • Target

    0a15015ef970444f19c084c19a9fe1db32bcb1abcc6fb4ccfd1f84daa482e88a

  • Size

    247KB

  • Sample

    241031-y4jmtavlcm

  • MD5

    5daf51d9070da96f0a869e62b7b86007

  • SHA1

    66553a901d6e45bbcae6515cdeac88bbf9f8da5e

  • SHA256

    0a15015ef970444f19c084c19a9fe1db32bcb1abcc6fb4ccfd1f84daa482e88a

  • SHA512

    2ad642174af158b338813668b93eca5ed72d9cbcd0c730693a0d145f7cf2d2c45bb6133538ba55c20636f307e70ec1cad764a72c4eda66dd638b99686670ea40

  • SSDEEP

    3072:J2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+Ts:J0KgGwHqwOOELha+sm2D2+Uhnguy81

Malware Config

Targets

    • Target

      0a15015ef970444f19c084c19a9fe1db32bcb1abcc6fb4ccfd1f84daa482e88a

    • Size

      247KB

    • MD5

      5daf51d9070da96f0a869e62b7b86007

    • SHA1

      66553a901d6e45bbcae6515cdeac88bbf9f8da5e

    • SHA256

      0a15015ef970444f19c084c19a9fe1db32bcb1abcc6fb4ccfd1f84daa482e88a

    • SHA512

      2ad642174af158b338813668b93eca5ed72d9cbcd0c730693a0d145f7cf2d2c45bb6133538ba55c20636f307e70ec1cad764a72c4eda66dd638b99686670ea40

    • SSDEEP

      3072:J2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+Ts:J0KgGwHqwOOELha+sm2D2+Uhnguy81

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks