3f8ec6209a117ad6ec24eb748b20631b1b09ee65566e2b98fbe5a7021967e40a | Triage

Submit
Reports

Overview

overview

7

Static

static

7

RGSS202E.dll

windows7-x64

6

RGSS202E.dll

windows10-2004-x64

3

Sharing

General

Target

RGSS202E.dll
Size

832KB
Sample

240630-qhbq3sybna
MD5

73b5e408ef0b2a8d498107448ea119b6
SHA1

4623ded035d009a3a7a975035e2bd505386d6b11
SHA256

3f8ec6209a117ad6ec24eb748b20631b1b09ee65566e2b98fbe5a7021967e40a
SHA512

b4f4fdc318c231c5677910c43f0da45ad2fe9d333fd89b9912794b890fc4297e6201c6ebfd90b8459cd6130809e05229ae7e0a9119bebf6298f20fc6ad2c81cd
SSDEEP

24576:nyctOF+OJjkh/cR5vmEhuBFm62+Ze3JWPCVBO:pO0i+EYBXzZJiO

Score

7^/10

aspackv2 bootkit persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

RGSS202E.dll

Resource

win7-20240508-en

bootkit persistence

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

RGSS202E.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  RGSS202E.dll
- Size
  
  832KB
- MD5
  
  73b5e408ef0b2a8d498107448ea119b6
- SHA1
  
  4623ded035d009a3a7a975035e2bd505386d6b11
- SHA256
  
  3f8ec6209a117ad6ec24eb748b20631b1b09ee65566e2b98fbe5a7021967e40a
- SHA512
  
  b4f4fdc318c231c5677910c43f0da45ad2fe9d333fd89b9912794b890fc4297e6201c6ebfd90b8459cd6130809e05229ae7e0a9119bebf6298f20fc6ad2c81cd
- SSDEEP
  
  24576:nyctOF+OJjkh/cR5vmEhuBFm62+Ze3JWPCVBO:pO0i+EYBXzZJiO
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

© 2018-2024

Terms | Privacy