General

  • Target

    17f23db1f703b87cac0f7ce0189d7304a5c36027dd67cf83bd2c35bd8ddcd436

  • Size

    247KB

  • Sample

    241031-z5d96avpcq

  • MD5

    bdd1cb53ebfb36f6bb7e2389bbb97316

  • SHA1

    aa3f80082827824a608e7ffeb8be7852bf2909d7

  • SHA256

    17f23db1f703b87cac0f7ce0189d7304a5c36027dd67cf83bd2c35bd8ddcd436

  • SHA512

    b3fad6a28da17062f5210b5f7c7d2a385c1b4d3b0df35397f9ba2f9254ad521c7257f2180a1c6b7703bb0edebb2f0b7f0a65577dfec5114eeaf20d976fc68b50

  • SSDEEP

    3072:Y2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+TK:Y0KgGwHqwOOELha+sm2D2+UhngufRY

Malware Config

Targets

    • Target

      17f23db1f703b87cac0f7ce0189d7304a5c36027dd67cf83bd2c35bd8ddcd436

    • Size

      247KB

    • MD5

      bdd1cb53ebfb36f6bb7e2389bbb97316

    • SHA1

      aa3f80082827824a608e7ffeb8be7852bf2909d7

    • SHA256

      17f23db1f703b87cac0f7ce0189d7304a5c36027dd67cf83bd2c35bd8ddcd436

    • SHA512

      b3fad6a28da17062f5210b5f7c7d2a385c1b4d3b0df35397f9ba2f9254ad521c7257f2180a1c6b7703bb0edebb2f0b7f0a65577dfec5114eeaf20d976fc68b50

    • SSDEEP

      3072:Y2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+TK:Y0KgGwHqwOOELha+sm2D2+UhngufRY

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks