General
-
Target
Magnetar.exe
-
Size
1.1MB
-
Sample
240706-mqsg1sygjg
-
MD5
d0e76380e7c1d6efd8768397a5291a35
-
SHA1
e3861d1d7cb04a41f937a2917ec9fb385d4bdfdf
-
SHA256
b2c17400a4dc55f4358e3d5ffd6a4ce2f94dad94d6e79d7c0b78319a85ad63b8
-
SHA512
5c4ef4ace91dd6cac1e897af639d97b4c44b21c8fa81e4ea107a4880395dab2f5a425e08b89917eb9664a4f5cd7374d905008446d61f27a614e259ccd4cc1220
-
SSDEEP
6144:7bnax+xda+AxQxQq4kT+U2PwEfs52ZPQsrwXrUBEfyT3vm9EwJ019JZ2gouG+tr:b7UgMfu9ezFbdCO90GhQDxskM0
Static task
static1
Behavioral task
behavioral1
Sample
Magnetar.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
Magnetar.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
Magnetar.exe
-
Size
1.1MB
-
MD5
d0e76380e7c1d6efd8768397a5291a35
-
SHA1
e3861d1d7cb04a41f937a2917ec9fb385d4bdfdf
-
SHA256
b2c17400a4dc55f4358e3d5ffd6a4ce2f94dad94d6e79d7c0b78319a85ad63b8
-
SHA512
5c4ef4ace91dd6cac1e897af639d97b4c44b21c8fa81e4ea107a4880395dab2f5a425e08b89917eb9664a4f5cd7374d905008446d61f27a614e259ccd4cc1220
-
SSDEEP
6144:7bnax+xda+AxQxQq4kT+U2PwEfs52ZPQsrwXrUBEfyT3vm9EwJ019JZ2gouG+tr:b7UgMfu9ezFbdCO90GhQDxskM0
Score8/10-
Event Triggered Execution: Image File Execution Options Injection
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Modifies boot configuration data using bcdedit
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Event Triggered Execution
1Image File Execution Options Injection
1Pre-OS Boot
1Bootkit
1Privilege Escalation
Event Triggered Execution
1Image File Execution Options Injection
1