Overview

overview

7

Static

static

3

cc9e40dc95...3a.exe

windows7-x64

7

cc9e40dc95...3a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cc9e40dc956bbe963b9dfcaf85eb6f18a64d6564d79c00467d9ed75b5cc9c53a

  • Size

    4.8MB

  • Sample

    241121-lk6a9a1kfz

  • MD5

    cf43395f318b63cc3562d133c7721cd7

  • SHA1

    28c25e976deed8fcc3845c4e20a5bf3d7d59e248

  • SHA256

    cc9e40dc956bbe963b9dfcaf85eb6f18a64d6564d79c00467d9ed75b5cc9c53a

  • SHA512

    4ffd492c979b3969f0b6c9d1e85c33aec014fa62f653b47a7970f863af68995ffe94e33b7d1dd9ce6b435e1114237fad439a816de45d838e4b0f0aefe8b2f5eb

  • SSDEEP

    98304:oVeM4VwHuokyfs8PGcx2HynIiprw0F80XZGyS:+AVw8kx2SnIe84GyS

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      cc9e40dc956bbe963b9dfcaf85eb6f18a64d6564d79c00467d9ed75b5cc9c53a

    • Size

      4.8MB

    • MD5

      cf43395f318b63cc3562d133c7721cd7

    • SHA1

      28c25e976deed8fcc3845c4e20a5bf3d7d59e248

    • SHA256

      cc9e40dc956bbe963b9dfcaf85eb6f18a64d6564d79c00467d9ed75b5cc9c53a

    • SHA512

      4ffd492c979b3969f0b6c9d1e85c33aec014fa62f653b47a7970f863af68995ffe94e33b7d1dd9ce6b435e1114237fad439a816de45d838e4b0f0aefe8b2f5eb

    • SSDEEP

      98304:oVeM4VwHuokyfs8PGcx2HynIiprw0F80XZGyS:+AVw8kx2SnIe84GyS

    Score
    7/10
    bootkitdiscoverypersistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks