3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

3c64b1d073...59.exe

windows7-x64

7

3c64b1d073...59.exe

windows10-2004-x64

7

Sharing

General

Target

3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59
Size

4.8MB
Sample

240630-dxb9yatarb
MD5

2e2448609b6d1dea5dd82d2ece03cbfe
SHA1

8909598943f51adfc368c682254ed98e1968ac90
SHA256

3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59
SHA512

624174361b80b1bd95d92d9facd4316a29f0d307478b0275bd368ac958e0e1119819980ec483a312a2b0da322084e3b9c6b58a062caf075957e7acc895d80b3e
SSDEEP

98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXO:TcmZl85gyjovK65E8ob5Sx8aXO

Score

7^/10

bootkit persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59.exe

Resource

win7-20240611-en

bootkit persistence

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59.exe

Resource

win10v2004-20240611-en

bootkit persistence

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59
- Size
  
  4.8MB
- MD5
  
  2e2448609b6d1dea5dd82d2ece03cbfe
- SHA1
  
  8909598943f51adfc368c682254ed98e1968ac90
- SHA256
  
  3c64b1d073d575d60f31ee809045c8aa064d774530bf5b267cf1812e2f915c59
- SHA512
  
  624174361b80b1bd95d92d9facd4316a29f0d307478b0275bd368ac958e0e1119819980ec483a312a2b0da322084e3b9c6b58a062caf075957e7acc895d80b3e
- SSDEEP
  
  98304:seLpmrmc2lAu28lkcf5YjovKqGYiOE8oLj5YINfSyo8aXO:TcmZl85gyjovK65E8ob5Sx8aXO
Score

7^/10

bootkit persistence
- Loads dropped DLL
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence

© 2018-2024

Terms | Privacy