General

  • Target

    0d4c0dbe8e5a887e911742ade0170729eb06f2819ddde310264c4e775a765be2N

  • Size

    247KB

  • Sample

    241109-ezadsswrez

  • MD5

    158aedb55e5d8c80b6b856ae92808d20

  • SHA1

    a34e2404f4f9b36502c7224ad85c4785e3ddf159

  • SHA256

    0d4c0dbe8e5a887e911742ade0170729eb06f2819ddde310264c4e775a765be2

  • SHA512

    882bfb193b88713fbe991aabe21bc6e6e319fa7bff5084ace6adc251a4ff27cd6ca673aa63c9fc40cddafe9e30913e05e4c48bfc185dc4edf107e1ffcd44f417

  • SSDEEP

    3072:Z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+Tw:Z0KgGwHqwOOELha+sm2D2+Uhngufcd

Malware Config

Targets

    • Target

      0d4c0dbe8e5a887e911742ade0170729eb06f2819ddde310264c4e775a765be2N

    • Size

      247KB

    • MD5

      158aedb55e5d8c80b6b856ae92808d20

    • SHA1

      a34e2404f4f9b36502c7224ad85c4785e3ddf159

    • SHA256

      0d4c0dbe8e5a887e911742ade0170729eb06f2819ddde310264c4e775a765be2

    • SHA512

      882bfb193b88713fbe991aabe21bc6e6e319fa7bff5084ace6adc251a4ff27cd6ca673aa63c9fc40cddafe9e30913e05e4c48bfc185dc4edf107e1ffcd44f417

    • SSDEEP

      3072:Z2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhOn+Tw:Z0KgGwHqwOOELha+sm2D2+Uhngufcd

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks