Resubmissions

10-06-2021 11:22

210610-r1hpg5wmq2 10

10-06-2021 09:08

210610-eadbc92qha 10

General

  • Target

    PremiereCrack.exe

  • Size

    89KB

  • Sample

    210610-eadbc92qha

  • MD5

    f7f63358ce4d52e3e73fa449b5a00f57

  • SHA1

    892b623f4f725683d0deed79a168b3a11c8c492c

  • SHA256

    f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794

  • SHA512

    4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31

Malware Config

Targets

    • Target

      PremiereCrack.exe

    • Size

      89KB

    • MD5

      f7f63358ce4d52e3e73fa449b5a00f57

    • SHA1

      892b623f4f725683d0deed79a168b3a11c8c492c

    • SHA256

      f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794

    • SHA512

      4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31

    • InfinityLock Ransomware

      Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks