Overview

overview

7

Static

static

5

HD Tune Pro 6.00.exe

windows7-x64

7

HD Tune Pro 6.00.exe

windows10-2004-x64

7

知软博�...��.url

windows7-x64

1

知软博�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    04f2a8898a764cdf76b13e9953cf92ce8d0804b794beeb6f9e38a51df588bc8f

  • Size

    1.8MB

  • Sample

    241119-vl9jqstlbr

  • MD5

    ffb11342aad302ee14844db5a1dfb0e5

  • SHA1

    3bae9b908253b8ca9ce656cf75667d2eef8ebda7

  • SHA256

    04f2a8898a764cdf76b13e9953cf92ce8d0804b794beeb6f9e38a51df588bc8f

  • SHA512

    f17624e1ff85771d1f3e2955ca85cd9c7406937bb8ffef9ae9547f8a0636def8b08218e86a044619bf0ac87f7eec384483d162c81aeb306ba0dc3cd21b051594

  • SSDEEP

    49152:MbwLCHg2tkxBnW3MDz4BqXOpKhMKDJZ1lWKLxfke:f+HHtkXW3i454TJZz

Score
7/10
bootkitlinkpersistenceqrupx

Malware Config

Targets

    • Target

      HD Tune Pro 6.00.exe

    • Size

      1.9MB

    • MD5

      9fed1ed409876c05f188a103c416ee60

    • SHA1

      93404c1c03b73c00b71ea1df65891b2cdc0a701e

    • SHA256

      56c10ba46c1fa1eb80cd994c837e48427ec6d8e4f820fd3ab2b90e1754ce85c5

    • SHA512

      841bc072f2357faed751b5740d0d82c7e6740b4af2fc3a291c9a924d330e35821c8a420f80cdbe597418784f6d522702a8893e9cabc5465ef57d0f2065c60ad8

    • SSDEEP

      49152:Q6whCHo0pkxT/ip6DzkNaX+9KhEmJf5XtWQLxpk/:wsHPpkV6pgkLU/fzW

    Score
    7/10
    bootkitpersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      知软博客 _ 免费分享软件、模板、技术教程的网站.url

    • Size

      109B

    • MD5

      ac3c4afed54589efd3b3aeefcd5accfa

    • SHA1

      d27e71153592c3cc0a37431deea12fcc5a1cafef

    • SHA256

      eaad9df71149e87f5c9658f8d739aea43add7f76b590ab801bb6309aecca48ba

    • SHA512

      97c0f102296442db3d8f5737c81a33bf9ed1cf5eb575f2bbf8a0fc03e9ccbb4077419ab5ca85a0b189474b22067e7320e973d3aa51806a415d343530162f6d54

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks