80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

80fd2dee7e...f4.exe

windows7-x64

6

80fd2dee7e...f4.exe

windows10-2004-x64

6

Sharing

General

Target

80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4
Size

2.6MB
Sample

240630-aq4h3azgmd
MD5

3f571908898b48f89c87f1692fdaa364
SHA1

29c1b0c2eeda91b17d2ef6ac37d4cf3bdf51fc30
SHA256

80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4
SHA512

437412320fd65308db79bd05eebbacfd9f31c43b5597adeb20a5ebbb44816e855e5d936ddfe77fd70f07fe174c39f18e798fefd6285bee4906105eb71e289f01
SSDEEP

49152:f4j1NmXskEityR+ggV/aLigl8EjIyBaPAkETdFhAitbVRc2Ecr7N+:f4j12xJtyqa+w1ZBhAi

Score

6^/10

bootkit persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4.exe

Resource

win7-20240220-en

bootkit persistence

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4.exe

Resource

win10v2004-20240611-en

bootkit persistence

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4
- Size
  
  2.6MB
- MD5
  
  3f571908898b48f89c87f1692fdaa364
- SHA1
  
  29c1b0c2eeda91b17d2ef6ac37d4cf3bdf51fc30
- SHA256
  
  80fd2dee7ed101a998af68a760aa6cc059b8c03590b709ea58be44974e0251f4
- SHA512
  
  437412320fd65308db79bd05eebbacfd9f31c43b5597adeb20a5ebbb44816e855e5d936ddfe77fd70f07fe174c39f18e798fefd6285bee4906105eb71e289f01
- SSDEEP
  
  49152:f4j1NmXskEityR+ggV/aLigl8EjIyBaPAkETdFhAitbVRc2Ecr7N+:f4j12xJtyqa+w1ZBhAi
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence

© 2018-2024

Terms | Privacy