Overview

overview

6

Static

static

3

ttt.exe

windows7-x64

6

ttt.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ttt.exe

  • Size

    421KB

  • Sample

    240428-29zg1abh8x

  • MD5

    9185b776b7a981d060b0bb0d7ffed201

  • SHA1

    427982fb520c099e8d2e831ace18294ade871aff

  • SHA256

    91a45c416324ed3a8c184e349214e7c82d6df0df4fe6d06f3c7818c0d322373b

  • SHA512

    cb46ca0c3156dc7b177fdb73869e13b229cbab8918dbb4b61a854765313fc9526aa5d7b944aa4b9acb77717c5ffd8fe955ba4eb48d75e2528ec844bfcf4aa5e8

  • SSDEEP

    12288:zZMh/qXO/ljOBYbPUV7TRnP+vacQlokO+bW:Wh/qXIvbPUFxqaQ2W

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      ttt.exe

    • Size

      421KB

    • MD5

      9185b776b7a981d060b0bb0d7ffed201

    • SHA1

      427982fb520c099e8d2e831ace18294ade871aff

    • SHA256

      91a45c416324ed3a8c184e349214e7c82d6df0df4fe6d06f3c7818c0d322373b

    • SHA512

      cb46ca0c3156dc7b177fdb73869e13b229cbab8918dbb4b61a854765313fc9526aa5d7b944aa4b9acb77717c5ffd8fe955ba4eb48d75e2528ec844bfcf4aa5e8

    • SSDEEP

      12288:zZMh/qXO/ljOBYbPUV7TRnP+vacQlokO+bW:Wh/qXIvbPUFxqaQ2W

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks