Overview

overview

6

Static

static

3

cryptolaemus

windows10-2004-x64

6

cryptolaemus

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b76f7e860cc3e458393ec9c1050cbc6d29addee16a9d125babe849ec3885064d

  • Size

    512KB

  • Sample

    240629-t8fdqs1erc

  • MD5

    88af96f69c635e4df8c04634223eeb4d

  • SHA1

    7f3572fcf45cdf2f83ae6d495028eba0c7dc4139

  • SHA256

    b76f7e860cc3e458393ec9c1050cbc6d29addee16a9d125babe849ec3885064d

  • SHA512

    595034e16fd94d12796aa8ff7b42865362b26b636f1526f03f7b219e19a110f3821d49b0d5d494839ccbfb92c0a58e0804fb56585c7eb3fcb13586b2f9b1751f

  • SSDEEP

    12288:rQZ/xJJsfGIwWrEdHcJwvxQ5bToDEUYrN2dw4ar:wx+/lYdHMKxQJMDEUYrsw4ar

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      b76f7e860cc3e458393ec9c1050cbc6d29addee16a9d125babe849ec3885064d

    • Size

      512KB

    • MD5

      88af96f69c635e4df8c04634223eeb4d

    • SHA1

      7f3572fcf45cdf2f83ae6d495028eba0c7dc4139

    • SHA256

      b76f7e860cc3e458393ec9c1050cbc6d29addee16a9d125babe849ec3885064d

    • SHA512

      595034e16fd94d12796aa8ff7b42865362b26b636f1526f03f7b219e19a110f3821d49b0d5d494839ccbfb92c0a58e0804fb56585c7eb3fcb13586b2f9b1751f

    • SSDEEP

      12288:rQZ/xJJsfGIwWrEdHcJwvxQ5bToDEUYrN2dw4ar:wx+/lYdHMKxQJMDEUYrsw4ar

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks