d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a | Triage

Submit
Reports

Overview

overview

6

Static

static

3

d481085eb3...8a.exe

windows7-x64

6

d481085eb3...8a.exe

windows10-2004-x64

6

Sharing

General

Target

d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a
Size

864KB
Sample

240701-f2zbdaxdjd
MD5

b27b11e336b8c1bf164be121d132e8f8
SHA1

4d0aed36da6dce6c38afa8c4683616c3024e7c42
SHA256

d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a
SHA512

eaa508ab65e3397e59b9f4bec5201fb9cfc16e8c0dc4afe3a63fab756becd58da307e0b56e1fa3c4efd0f643f914cca2f3cd59fa7a5099910cf14e08e90d0f9d
SSDEEP

24576:mfK2vAPUTyu3p/i6+IooGMRT5cZRzNKzKI:mCITJBBTXTqZtI

Score

6^/10

bootkit persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a.exe

Resource

win7-20240220-en

bootkit persistence

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a.exe

Resource

win10v2004-20240611-en

bootkit persistence

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a
- Size
  
  864KB
- MD5
  
  b27b11e336b8c1bf164be121d132e8f8
- SHA1
  
  4d0aed36da6dce6c38afa8c4683616c3024e7c42
- SHA256
  
  d481085eb398f36b321317d5f29a72329e0c4830f4366bbc224fceb0a53dbb8a
- SHA512
  
  eaa508ab65e3397e59b9f4bec5201fb9cfc16e8c0dc4afe3a63fab756becd58da307e0b56e1fa3c4efd0f643f914cca2f3cd59fa7a5099910cf14e08e90d0f9d
- SSDEEP
  
  24576:mfK2vAPUTyu3p/i6+IooGMRT5cZRzNKzKI:mCITJBBTXTqZtI
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence

© 2018-2024

Terms | Privacy