63b6e9c3a759dfe7c81a13679d2cafb6fe5098b645db61d6c5d44c666cfa95f0

General

Target

ExcelLicenced.exe
Size

11.8MB
Sample

210707-lbv9qqgjrs
MD5

d6d98fb08f86f036efe73cb693bf8511
SHA1

6745d9982651c067ff64ad7adfdb4b762d9763e2
SHA256

63b6e9c3a759dfe7c81a13679d2cafb6fe5098b645db61d6c5d44c666cfa95f0
SHA512

096eb8bc54d09304423530b96030b9bb717be381bbd49abaa1fb8e95111ed5202ea1420ea738a3ec9054c357b12772fe8926662a012605037724da9d23f6858a

Score

10^/10

pyinstaller ransomware

Malware Config

Extracted

Path

C:\Users\Admin\Desktop\Cytomate-Ransomware\README.txt

Ransom Note

Attention! All your files, documents, photos, databases and other important files are encrypted and have the extension: .Locked The only method of recovering files is to purchase an unique private key. Only we can give you this key and only we can recover your files. This is the demo so your secret key for decryption is 1cb0e3a533426d1dc94ccb37acb14016

Wallets

1cb0e3a533426d1dc94ccb37acb14016

Extracted

Path

C:\Users\Admin\Desktop\Cytomate-Ransomware\README.txt

Ransom Note

Attention! All your files, documents, photos, databases and other important files are encrypted and have the extension: .Locked The only method of recovering files is to purchase an unique private key. Only we can give you this key and only we can recover your files. This is the demo so your secret key for decryption is e81581f359e9b3e8d9a8fab85b77cf01

Targets

- Target
  
  ExcelLicenced.exe
- Size
  
  11.8MB
- MD5
  
  d6d98fb08f86f036efe73cb693bf8511
- SHA1
  
  6745d9982651c067ff64ad7adfdb4b762d9763e2
- SHA256
  
  63b6e9c3a759dfe7c81a13679d2cafb6fe5098b645db61d6c5d44c666cfa95f0
- SHA512
  
  096eb8bc54d09304423530b96030b9bb717be381bbd49abaa1fb8e95111ed5202ea1420ea738a3ec9054c357b12772fe8926662a012605037724da9d23f6858a
Score

10^/10

ransomware
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Loads dropped DLL

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2