123b40b439b9914b73c9026ecfe86b3bd55ff5891eb8f134835d343285f53964 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Simple-MBR-Overwrite-v1.0.0.exe
Size

236KB
Sample

250610-v6ly6sywhs
MD5

562a50e8c6d9518671e02907c53e4b06
SHA1

1c1a76ecef9dff3144e6f6e44618e5e5533f2697
SHA256

123b40b439b9914b73c9026ecfe86b3bd55ff5891eb8f134835d343285f53964
SHA512

29a1f1fb32215a5f4d40e06d39f21ec25a7f79d4a0fcbd101c95b3c864efe1607f90a50f6473c73fbfca30791f2876bd20238ff4d8b7761a9c0eadd42ab5210d
SSDEEP

6144:tu/zznNHDIXGHIrBrUgTl7FoBQYJeHlAMPIt:tuXBDIX+Wlg4HZwt

Score

6^/10

bootkit discovery persistence

Malware Config

Targets

- Target
  
  Simple-MBR-Overwrite-v1.0.0.exe
- Size
  
  236KB
- MD5
  
  562a50e8c6d9518671e02907c53e4b06
- SHA1
  
  1c1a76ecef9dff3144e6f6e44618e5e5533f2697
- SHA256
  
  123b40b439b9914b73c9026ecfe86b3bd55ff5891eb8f134835d343285f53964
- SHA512
  
  29a1f1fb32215a5f4d40e06d39f21ec25a7f79d4a0fcbd101c95b3c864efe1607f90a50f6473c73fbfca30791f2876bd20238ff4d8b7761a9c0eadd42ab5210d
- SSDEEP
  
  6144:tu/zznNHDIXGHIrBrUgTl7FoBQYJeHlAMPIt:tuXBDIX+Wlg4HZwt
Score

6^/10

bootkit discovery persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitdiscoverypersistence

behavioral2

bootkitdiscoverypersistence