suncrypt | 3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824 | Triage

Submit
Reports

Static

static

Win7: 5min timeout

windows7_x64

7

Win10: 5min timeout

windows10_x64

8

Sharing

General

Target

3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824
Size

425KB
Sample

201210-baq8xykccn
MD5

8e2ccd9284e09ccc4e9eef325a83b435
SHA1

7710f609e7623a08f0dd7cb8fae1ff38d0c729ef
SHA256

3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824
SHA512

9827bdb32c04127ee0ccc41be9c84df40e7d2aa30c68dc9f9e5bfabcd920478884bbec0f3f8ddcbe5fba2eafafa3437b37af161d59fc39daa92202e2f884247f

Score

10^/10

suncrypt ransomware spyware

Static task

static1

ransomware suncrypt

Behavioral task

behavioral1

Sample

3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824.exe

Resource

win10v20201028

ransomware spyware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824
- Size
  
  425KB
- MD5
  
  8e2ccd9284e09ccc4e9eef325a83b435
- SHA1
  
  7710f609e7623a08f0dd7cb8fae1ff38d0c729ef
- SHA256
  
  3f6e996ee4a40d2d19b648669d9146562627359626239324937a5c75f8030824
- SHA512
  
  9827bdb32c04127ee0ccc41be9c84df40e7d2aa30c68dc9f9e5bfabcd920478884bbec0f3f8ddcbe5fba2eafafa3437b37af161d59fc39daa92202e2f884247f
Score

8^/10

spyware ransomware
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

ransomwaresuncrypt

behavioral1

behavioral2

ransomwarespyware

© 2018-2024

Terms | Privacy