General

  • Target

    ec7baaf1ceaa31143d80ca0e7f8a6e45603a122746e1555d61fe3319f4251918

  • Size

    247KB

  • Sample

    241031-z13rysvnhl

  • MD5

    f63755684d686255e8b106d2bf9e5560

  • SHA1

    8e6c0b5c37224b17e51f0a0710a291fae037acf8

  • SHA256

    ec7baaf1ceaa31143d80ca0e7f8a6e45603a122746e1555d61fe3319f4251918

  • SHA512

    68e776b729864c305874012bb163eda7bda1c5899c6d79a1eef48c4fa46807388647ab383d6ba878348b44f1382968bb7eebe3d9918ad08089332d41e9a1ba79

  • SSDEEP

    3072:X2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TY:X0KgGwHqwOOELha+sm2D2+UhnguyRi

Malware Config

Targets

    • Target

      ec7baaf1ceaa31143d80ca0e7f8a6e45603a122746e1555d61fe3319f4251918

    • Size

      247KB

    • MD5

      f63755684d686255e8b106d2bf9e5560

    • SHA1

      8e6c0b5c37224b17e51f0a0710a291fae037acf8

    • SHA256

      ec7baaf1ceaa31143d80ca0e7f8a6e45603a122746e1555d61fe3319f4251918

    • SHA512

      68e776b729864c305874012bb163eda7bda1c5899c6d79a1eef48c4fa46807388647ab383d6ba878348b44f1382968bb7eebe3d9918ad08089332d41e9a1ba79

    • SSDEEP

      3072:X2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+TY:X0KgGwHqwOOELha+sm2D2+UhnguyRi

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks