General
-
Target
pcoptimizer.exe
-
Size
212KB
-
Sample
240701-cvfnxatblh
-
MD5
eeaef69144b4ff2e3fb398bb0c880dbe
-
SHA1
69c4958b752e615f829cb50846a651b996ec9b9d
-
SHA256
b308979b80ff6586c755a2e72fb988819ae4b50fb021ab0d1f27b0c6899d2bc1
-
SHA512
5a5ec302a4f379244e757967c759a988844e35be2edfe19c705641ca3bbaa48d1b948c58046d51fe95a927cbc89539bef583549807bd04a6a4381ebf3d1fb0f9
-
SSDEEP
6144:at5hBPi0BW69hd1MMdxPe9N9uA069TBZlU25hFDaXb0:atzww69T7q25zDP
Static task
static1
Behavioral task
behavioral1
Sample
pcoptimizer.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
pcoptimizer.exe
-
Size
212KB
-
MD5
eeaef69144b4ff2e3fb398bb0c880dbe
-
SHA1
69c4958b752e615f829cb50846a651b996ec9b9d
-
SHA256
b308979b80ff6586c755a2e72fb988819ae4b50fb021ab0d1f27b0c6899d2bc1
-
SHA512
5a5ec302a4f379244e757967c759a988844e35be2edfe19c705641ca3bbaa48d1b948c58046d51fe95a927cbc89539bef583549807bd04a6a4381ebf3d1fb0f9
-
SSDEEP
6144:at5hBPi0BW69hd1MMdxPe9N9uA069TBZlU25hFDaXb0:atzww69T7q25zDP
-
Modifies boot configuration data using bcdedit
-
Possible privilege escalation attempt
-
Executes dropped EXE
-
Modifies file permissions
-
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-