Overview

overview

6

Static

static

3

cryptolaemus

windows10-2004-x64

6

cryptolaemus

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44c24d69b2bcf7a889eb87eb7fa15dc1fe2c7c199b9636c455483b27170488ff

  • Size

    549KB

  • Sample

    240630-r6wltsshjp

  • MD5

    f70acba2db5874c1fbfe7aaa2e18e50a

  • SHA1

    6f1f4346c8513fdd192a176a4f891ce55b17aa12

  • SHA256

    44c24d69b2bcf7a889eb87eb7fa15dc1fe2c7c199b9636c455483b27170488ff

  • SHA512

    7a295047ba3d94b3504da7aca7f6c752425eff2c400b76b3b9004603fa3d740e35a39422bc393d7745423467fa054ec6e48e8b8a5ac32958d1c673024acd5b25

  • SSDEEP

    6144:XOVO89A16CjdswfCcmkaRHUaLsE44kkHwXJCS2onrt4vv8qC98J85chPR0cDfS:+VO89AYQdspcmk+1sE2kOt4vueJ8SXG

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      44c24d69b2bcf7a889eb87eb7fa15dc1fe2c7c199b9636c455483b27170488ff

    • Size

      549KB

    • MD5

      f70acba2db5874c1fbfe7aaa2e18e50a

    • SHA1

      6f1f4346c8513fdd192a176a4f891ce55b17aa12

    • SHA256

      44c24d69b2bcf7a889eb87eb7fa15dc1fe2c7c199b9636c455483b27170488ff

    • SHA512

      7a295047ba3d94b3504da7aca7f6c752425eff2c400b76b3b9004603fa3d740e35a39422bc393d7745423467fa054ec6e48e8b8a5ac32958d1c673024acd5b25

    • SSDEEP

      6144:XOVO89A16CjdswfCcmkaRHUaLsE44kkHwXJCS2onrt4vv8qC98J85chPR0cDfS:+VO89AYQdspcmk+1sE2kOt4vueJ8SXG

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks