Malware Trojan.Mebromi
Trojan.Mebromi is BIOS-level malware that takes control of the victim before MBR.
Platforms : Windows
Version : 1.1
Created : 31 May 2017
Last Modified : 30 March 2020
Version : 1.1
Created : 31 May 2017
Last Modified : 30 March 2020
List of techniques used :
| id | description |
|---|---|
| T1542.001 | Pre-OS Boot: System Firmware Adversaries may modify system firmware to persist on systems.The BIOS (Basic Input/Output System) and The Unified Extensible Firmware Interface (UEFI) or Extensible Firmware Interface (EFI) are examples of system firmware that operate as the software interface between the operating system and hardware of a computer. System firmware like BIOS and (U)EFI underly the functionality of a computer and may be modified by an adversary to perform or assist in malicious activity. Capabilities exist to overwrite the system firmware, which may give sophisticated adversaries a means to install malicious firmware updates as a means of persistence on a system that may be difficult to detect. |
List of groups using the malware :
| id | description |
|---|
© 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.