8fca9bc0b179fd0b103a73e60dcaa2abe7d7da80822b90ef5d8f32dfc9f742aa | Triage

Sharing

General

Target

Token.exe
Size

63KB
Sample

241120-e7kvha1khz
MD5

a40b38a36f2ee380e9f8a150429a0450
SHA1

853c33a4bde71f05b8965b551ee5926c9d8df51f
SHA256

8fca9bc0b179fd0b103a73e60dcaa2abe7d7da80822b90ef5d8f32dfc9f742aa
SHA512

df331dfb90e19bc0bb4edcabb86eca4c263a6c67ba98c44d5892a81ed93b83cd8c9f4e21cb267495077c6691d3ffc0d464d5e4b0ca86c68c11a1ae0b322eb1c2
SSDEEP

1536:cG+t9ngoNh7gVUfmgFNoiBU+TkThv5Iw1EOxxj:cG+lguBFB2FTsw1EOx5

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  Token.exe
- Size
  
  63KB
- MD5
  
  a40b38a36f2ee380e9f8a150429a0450
- SHA1
  
  853c33a4bde71f05b8965b551ee5926c9d8df51f
- SHA256
  
  8fca9bc0b179fd0b103a73e60dcaa2abe7d7da80822b90ef5d8f32dfc9f742aa
- SHA512
  
  df331dfb90e19bc0bb4edcabb86eca4c263a6c67ba98c44d5892a81ed93b83cd8c9f4e21cb267495077c6691d3ffc0d464d5e4b0ca86c68c11a1ae0b322eb1c2
- SSDEEP
  
  1536:cG+t9ngoNh7gVUfmgFNoiBU+TkThv5Iw1EOxxj:cG+lguBFB2FTsw1EOx5
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence