Overview

overview

7

Static

static

ransomware

windows7_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mor.exe

  • Size

    1.8MB

  • Sample

    200507-z2cgqxa2a6

  • MD5

    8047e6794185e04962dd0129578ad5fb

  • SHA1

    eec92485bde641aaf2284c5bf39c2684a229af7c

  • SHA256

    792a7e3d90b110f71d0c6e67a70866b72d06dd65189f4e3ba96a90813e093df8

  • SHA512

    53599cf3a81dd33fa98aefb0ed9836fa2177f7c5eb72ca8deb3f79af18d6af583180eef2d58ef3aff5db09b2594e3ae818e913d4d3ed477f20e282979e57dd6a

Score
7/10
spyware

Malware Config

Targets

    • Target

      mor.exe

    • Size

      1.8MB

    • MD5

      8047e6794185e04962dd0129578ad5fb

    • SHA1

      eec92485bde641aaf2284c5bf39c2684a229af7c

    • SHA256

      792a7e3d90b110f71d0c6e67a70866b72d06dd65189f4e3ba96a90813e093df8

    • SHA512

      53599cf3a81dd33fa98aefb0ed9836fa2177f7c5eb72ca8deb3f79af18d6af583180eef2d58ef3aff5db09b2594e3ae818e913d4d3ed477f20e282979e57dd6a

    Score
    7/10
    spyware

    • Deletes itself

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Drops desktop.ini file(s)

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks