5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d | Triage

Submit
Reports

Overview

overview

9

Static

static

5d40615701...3d.exe

windows7_x64

9

5d40615701...3d.exe

windows10_x64

9

Sharing

General

Target

5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d.exe
Size

91KB
Sample

200713-88h4eeyy12
MD5

be60e389a0108b2871dff12dfbb542ac
SHA1

14b4e0bfac64ec0f837f84ab1780ca7ced8d670d
SHA256

5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d
SHA512

6051bec441434a80c34ee2752a3da9c3a0307cd1b551aa27a0f7f6f75b9bf64b172745d80f03eea054a03ebd2c493df21fd48d8fa3b706d46a6f7fee0e7c0641

Score

9^/10

persistence ransomware

Static task

static1

Behavioral task

behavioral1

Sample

5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d.exe

Resource

win7v200430

ransomware persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d.exe

Resource

win10

persistence ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d.exe
- Size
  
  91KB
- MD5
  
  be60e389a0108b2871dff12dfbb542ac
- SHA1
  
  14b4e0bfac64ec0f837f84ab1780ca7ced8d670d
- SHA256
  
  5d40615701c48a122e44f831e7c8643d07765629a83b15d090587f469c77693d
- SHA512
  
  6051bec441434a80c34ee2752a3da9c3a0307cd1b551aa27a0f7f6f75b9bf64b172745d80f03eea054a03ebd2c493df21fd48d8fa3b706d46a6f7fee0e7c0641
Score

9^/10

ransomware persistence
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Executes dropped EXE
- Deletes itself
- Drops startup file
- Modifies service
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

File Deletion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

ransomwarepersistence

behavioral2

persistenceransomware

© 2018-2025

Terms | Privacy