General

  • Target

    322d4112de3bd38a2df379af8ea6a5750ab2398d163349db671cda38ce8f282e

  • Size

    1.3MB

  • Sample

    241122-h5425swndy

  • MD5

    79ce788f16fc9fb91a9ee1daa6f30742

  • SHA1

    96c157afd39e5eff9a011b691f917b5336587198

  • SHA256

    322d4112de3bd38a2df379af8ea6a5750ab2398d163349db671cda38ce8f282e

  • SHA512

    1cb036f078cfd58f70ca9af55b8bfab2a56de9ffa14cf816d372d6adc0bc338110cff7ae37cf47e19626ec616749942e16a9f3a17a3b266587baae0ea1f9b8c0

  • SSDEEP

    12288:t3mOWj4H+d2FtAkQDdAYRd+M+loLGiVm7h3cf4iQtPC2SYJPR5nWFpPoSpz9bJxU:t3mOe4Cn9DOYP+9lyfMPLSkObbz9bJ3K

Malware Config

Targets

    • Target

      322d4112de3bd38a2df379af8ea6a5750ab2398d163349db671cda38ce8f282e

    • Size

      1.3MB

    • MD5

      79ce788f16fc9fb91a9ee1daa6f30742

    • SHA1

      96c157afd39e5eff9a011b691f917b5336587198

    • SHA256

      322d4112de3bd38a2df379af8ea6a5750ab2398d163349db671cda38ce8f282e

    • SHA512

      1cb036f078cfd58f70ca9af55b8bfab2a56de9ffa14cf816d372d6adc0bc338110cff7ae37cf47e19626ec616749942e16a9f3a17a3b266587baae0ea1f9b8c0

    • SSDEEP

      12288:t3mOWj4H+d2FtAkQDdAYRd+M+loLGiVm7h3cf4iQtPC2SYJPR5nWFpPoSpz9bJxU:t3mOe4Cn9DOYP+9lyfMPLSkObbz9bJ3K

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks