Overview

overview

10

Static

static

__HiddenTe...in.exe

windows7_x64

__HiddenTe...in.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    __HiddenTear _Ransomware.bin.zip

  • Size

    57KB

  • Sample

    201019-rvher3ay8s

  • MD5

    00265a3ef27594e37a18b8a327978878

  • SHA1

    11d833403f324b7d39112dab49da2bbd87f80cf8

  • SHA256

    16532a574e992244986b79628cb73830333db9aee2d306e367607b3878bae758

  • SHA512

    f2f1a5fecc08ecbf43d3b67e79caeb35d93eddc9cb2800ba97b2f3a0ec53ec01b9b5a778b84d17f82936e13002b565d6e89f3ff51709f2bbec89bd001e2173c4

Score
10/10
ransomware

Malware Config

Extracted

Path

C:\Windows\Vss\HOW TO RECOVER YOUR FILES !!!.txt

Ransom Note
All your files have been encrypted. If you want to restore them , write us to the e-mail : FileFixer@ProtonMail.com Write this ID in the title of Your message : FA653E5F In Case of no answer in 24 hours write us to theese e-mail : JustBTC@elude.in Dont rename encrypted Files and dont try decrypt them , maybe lost them forever
Emails

FileFixer@ProtonMail.com

JustBTC@elude.in

Targets

    • Target

      __HiddenTear _Ransomware.bin

    • Size

      281KB

    • MD5

      65a91bdb3b625460859180e9492fe40e

    • SHA1

      64f905734ed85ec8294cf9c0dc41ac0c77f2d8b5

    • SHA256

      d2590d5528bddbafd6ed954e00ff25a8f42e1d855d663a49ed6a6013d492cae5

    • SHA512

      235cfa035430a76a0b8224d25a79b275fce4801a3829d88fef3f08b327f2527a458e7084a35bb26f935d3690a94eed5baac2583357505d72c1adcfa70e47d5aa

    Score
    10/10
    ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks