hxxps://youtube[.]com/@boffy/ | Triage

Submit
Reports

Overview

overview

6

Static

static

1

URLScan

urlscan

1

https://youtube.com/...

windows7-x64

5

https://youtube.com/...

windows11-21h2-x64

https://youtube.com/...

ubuntu-20.04-amd64

4

https://youtube.com/...

ubuntu-24.04-amd64

6

Resubmissions

27-01-2025 01:26

250127-bttzgavkfm 7

27-01-2025 01:13

250127-bk8fhasqgt 6

20-01-2025 05:23

250120-f3dfastmap 7

20-01-2025 05:07

250120-fr6ygasrdr 6

31-12-2024 05:12

241231-fv24pawlhm 7

31-12-2024 04:49

241231-ffsxgaylaw 10

31-12-2024 04:46

241231-fd1jjaykby 7

31-12-2024 04:31

241231-e5vlxsxpd1 10

Sharing

General

Target

https://youtube.com/@boffy/
Sample

250127-bk8fhasqgt

Score

6^/10

antivm bootkit discovery linux persistence

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://youtube.com/@boffy/

Resource

win7-20240903-en

windows7-x64

11 signatures

900 seconds

Behavioral task

behavioral2

Sample

https://youtube.com/@boffy/

Resource

win11-20241007-en

bootkit discovery persistence

windows11-21h2-x64

18 signatures

900 seconds

Behavioral task

behavioral3

Sample

https://youtube.com/@boffy/

Resource

ubuntu2004-amd64-20240611-en

antivm discovery

ubuntu-20.04-amd64

7 signatures

900 seconds

Behavioral task

behavioral4

Sample

https://youtube.com/@boffy/

Resource

ubuntu2404-amd64-20240729-en

ubuntu-24.04-amd64

4 signatures

900 seconds

Malware Config

Targets

- Target
  
  https://youtube.com/@boffy/
Score

6^/10

discovery bootkit persistence antivm
- Reads AppArmor ptrace settings
  Discovery of allowed ptrace capabilities by AppArmor.
  discovery
- Legitimate hosting services abused for malware hosting/C2
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

bootkitdiscoverypersistence

behavioral3

antivmdiscovery

behavioral4

© 2018-2025

Terms | Privacy