Overview

overview

10

Static

static

bfaebc86c1...in.exe

windows7_x64

10

bfaebc86c1...in.exe

windows10_x64

10

Resubmissions

04-09-2021 18:09

210904-wrxmsshegj 10

31-08-2020 12:21

200831-tnfgvzw7da 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bfaebc86c1712aa80f501d859de686078b9f21e89174bd23a19b27af93b40ce4.bin

  • Size

    77KB

  • Sample

    200831-tnfgvzw7da

  • MD5

    4e24780d9700a1cb9d741d7ef51889f1

  • SHA1

    4700da92e1f99b576ff517d3fa18103c67ac0d11

  • SHA256

    bfaebc86c1712aa80f501d859de686078b9f21e89174bd23a19b27af93b40ce4

  • SHA512

    c1d2501b95822796d6116711d426463dd95fd059201e11cf19f9ba8709782e6997cd4d2c04eb163199d305e04e04462ed032a53f50f9df0f4ff495dfb75450a0

Score
10/10
infinitylockransomware

Malware Config

Targets

    • Target

      bfaebc86c1712aa80f501d859de686078b9f21e89174bd23a19b27af93b40ce4.bin

    • Size

      77KB

    • MD5

      4e24780d9700a1cb9d741d7ef51889f1

    • SHA1

      4700da92e1f99b576ff517d3fa18103c67ac0d11

    • SHA256

      bfaebc86c1712aa80f501d859de686078b9f21e89174bd23a19b27af93b40ce4

    • SHA512

      c1d2501b95822796d6116711d426463dd95fd059201e11cf19f9ba8709782e6997cd4d2c04eb163199d305e04e04462ed032a53f50f9df0f4ff495dfb75450a0

    Score
    10/10
    ransomwareinfinitylock

    • InfinityLock Ransomware

      Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.

      ransomwareinfinitylock

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks