Overview

overview

6

Static

static

3

cryptolaemus

windows10-2004-x64

6

cryptolaemus

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e718414b9db8392a5104e29b5987897f1a4ee59c0e3fe4127e032b1b489432d

  • Size

    541KB

  • Sample

    240701-l81exayflp

  • MD5

    ad60da2abe8a140c0969f8b295d0ed9f

  • SHA1

    2fa3454029ea12d797c518e36b58f17301b327ec

  • SHA256

    9e718414b9db8392a5104e29b5987897f1a4ee59c0e3fe4127e032b1b489432d

  • SHA512

    ffb8a2857696fd4d4b87d6149271345fee412ae4fc5524a044ed85f0590f2d5e0c930f1be3d19d1fb5ab784f2c21d0e8d36278a809d350ce01860543edd57f81

  • SSDEEP

    12288:y8EPsjqOip4JFfrnmVXvp6mOJcyoAwRR6gp:y8vj9rnIB6mITwRdp

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      9e718414b9db8392a5104e29b5987897f1a4ee59c0e3fe4127e032b1b489432d

    • Size

      541KB

    • MD5

      ad60da2abe8a140c0969f8b295d0ed9f

    • SHA1

      2fa3454029ea12d797c518e36b58f17301b327ec

    • SHA256

      9e718414b9db8392a5104e29b5987897f1a4ee59c0e3fe4127e032b1b489432d

    • SHA512

      ffb8a2857696fd4d4b87d6149271345fee412ae4fc5524a044ed85f0590f2d5e0c930f1be3d19d1fb5ab784f2c21d0e8d36278a809d350ce01860543edd57f81

    • SSDEEP

      12288:y8EPsjqOip4JFfrnmVXvp6mOJcyoAwRR6gp:y8vj9rnIB6mITwRdp

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks