General

  • Target

    os homi do pilar.png

  • Size

    1.1MB

  • Sample

    241122-eyqz6azpfm

  • MD5

    714834a86e85c16d63324c337c6c6d2a

  • SHA1

    1d89b55593e4fe7d7f447799e54adef6ed917179

  • SHA256

    7787eb82f7b0dea876d1b6240369b29a3067a6c9e17760f91496179161e34ba5

  • SHA512

    1db3f8392dbc7ecca774bce86da4d260296ea7be6b9e9b588e2ead3189deff5f9b00dfd593667f275651f452105b5eb360ae0c99e82b647b54ecba91c06ad46b

  • SSDEEP

    24576:M587G/r6ai2LtfF1D5c67TROtJHKC0uDPXHkQVlw:h6/KchDfYDmuDXHkalw

Malware Config

Targets

    • Target

      os homi do pilar.png

    • Size

      1.1MB

    • MD5

      714834a86e85c16d63324c337c6c6d2a

    • SHA1

      1d89b55593e4fe7d7f447799e54adef6ed917179

    • SHA256

      7787eb82f7b0dea876d1b6240369b29a3067a6c9e17760f91496179161e34ba5

    • SHA512

      1db3f8392dbc7ecca774bce86da4d260296ea7be6b9e9b588e2ead3189deff5f9b00dfd593667f275651f452105b5eb360ae0c99e82b647b54ecba91c06ad46b

    • SSDEEP

      24576:M587G/r6ai2LtfF1D5c67TROtJHKC0uDPXHkQVlw:h6/KchDfYDmuDXHkalw

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks