Overview

overview

10

Static

static

1

ILoveMyPar...ch.jpg

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ILoveMyParentsSoSoSoMuch.jpg

  • Size

    5KB

  • Sample

    250112-2fmakssna1

  • MD5

    164cbb11240a0d3351772fffeb9fae4d

  • SHA1

    d123ac8f26689b6d576d7fd595e1ed1734b4d4ea

  • SHA256

    2f53820e92c90d6409b59391f9263cc6d4b2c57e62ecfef02ea3b9cbb4b4019b

  • SHA512

    4bcc40c3dfd6ee2f41d6744448e7b27464f46562f9828827ede0512ba85d17742b267c47143659cfe8a3a9c451f377db2e0f740210c6b9f436ed6ba6a5c52f0a

  • SSDEEP

    96:JheIUlyXkf9J0XosDKGYVJKnskloJz+j7TZ+erAtreAFdjPmFzDRhHM4:SlMw6XoLzqJPEer2bF1mj

Score
10/10
bootkitgooglediscoverypersistencephishing

Malware Config

Targets

    • Target

      ILoveMyParentsSoSoSoMuch.jpg

    • Size

      5KB

    • MD5

      164cbb11240a0d3351772fffeb9fae4d

    • SHA1

      d123ac8f26689b6d576d7fd595e1ed1734b4d4ea

    • SHA256

      2f53820e92c90d6409b59391f9263cc6d4b2c57e62ecfef02ea3b9cbb4b4019b

    • SHA512

      4bcc40c3dfd6ee2f41d6744448e7b27464f46562f9828827ede0512ba85d17742b267c47143659cfe8a3a9c451f377db2e0f740210c6b9f436ed6ba6a5c52f0a

    • SSDEEP

      96:JheIUlyXkf9J0XosDKGYVJKnskloJz+j7TZ+erAtreAFdjPmFzDRhHM4:SlMw6XoLzqJPEer2bF1mj

    Score
    10/10
    bootkitgooglediscoverypersistencephishing

    • Detected google phishing page

      phishinggoogle

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks