General

  • Target

    29e5c9854025847742ab7b8c828c4da3b33763099d0a8ea3790719204ee1ca5a

  • Size

    219KB

  • Sample

    241031-zsvfls1res

  • MD5

    08e739512f3391094c273c22fe7ac07b

  • SHA1

    0d01ed878000cbbd886c345c8e04686cbfa89cf6

  • SHA256

    29e5c9854025847742ab7b8c828c4da3b33763099d0a8ea3790719204ee1ca5a

  • SHA512

    3dd30399523c8919569a1cce5a53f8d9da97e24c2357bce6df673329266d2dfd8532229112862ec83270c69f6a25c225b11c779d93d8eaa78af886a9ec455830

  • SSDEEP

    3072:i2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhh3K0Kf:i0KgGwHqwOOELha+sm2D2+UhngNdK421

Malware Config

Targets

    • Target

      29e5c9854025847742ab7b8c828c4da3b33763099d0a8ea3790719204ee1ca5a

    • Size

      219KB

    • MD5

      08e739512f3391094c273c22fe7ac07b

    • SHA1

      0d01ed878000cbbd886c345c8e04686cbfa89cf6

    • SHA256

      29e5c9854025847742ab7b8c828c4da3b33763099d0a8ea3790719204ee1ca5a

    • SHA512

      3dd30399523c8919569a1cce5a53f8d9da97e24c2357bce6df673329266d2dfd8532229112862ec83270c69f6a25c225b11c779d93d8eaa78af886a9ec455830

    • SSDEEP

      3072:i2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCoKOhh3K0Kf:i0KgGwHqwOOELha+sm2D2+UhngNdK421

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks