Overview

overview

8

Static

static

7dc40a9e66...31.exe

windows7_x64

8

7dc40a9e66...31.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7dc40a9e663d516089df8a653d79bcd705425fc74caf56b32f45c4786b51ba31.zip

  • Size

    2KB

  • Sample

    210609-b9bka38fea

  • MD5

    54262aac6c5916a67360b9f3566ed34e

  • SHA1

    b456e6450f65c6100213dd46d8fe227065477965

  • SHA256

    b3ca5d5244aacc4709ac02be2fa3f3525cf5f1e8bc7a8ad6ae3dfa668a8cf531

  • SHA512

    6a3e69432f57c72292e3487cac5ea25b191814f55588ff6c8c3609b07654ae3a7766b1ce436614350b9c7e52a73eb3afde6e4437a58a11565df0d12d1a266ef7

Score
8/10
ransomwarespywarestealer

Malware Config

Targets

    • Target

      7dc40a9e663d516089df8a653d79bcd705425fc74caf56b32f45c4786b51ba31.exe

    • Size

      5KB

    • MD5

      08c1b410a3c20bcc4cd1ee2906c240af

    • SHA1

      97864c23a1c46e30633c9c3a2ee74e3d6de262a9

    • SHA256

      7dc40a9e663d516089df8a653d79bcd705425fc74caf56b32f45c4786b51ba31

    • SHA512

      d11530a312f13b0e24009ba54751bc29d21144c474e8211bfdb3446ed4cac409049e3553eca117b29a2d3898612419bfd8dfc7a89da43c309c30c2fa19479d47

    Score
    8/10
    ransomwarespywarestealer

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

      ransomware

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks