snatch | e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d | Triage

Submit
Reports

Overview

overview

Static

static

e8931967ed...le.exe

windows7_x64

e8931967ed...le.exe

windows10_x64

Sharing

General

Target

e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d.sample
Size

4.2MB
Sample

210726-hv51kts1rs
MD5

d985a6610213773a43584afe1107dbd9
SHA1

4e743e81dcb4df6e21aacd0ad2918a5b20586127
SHA256

e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d
SHA512

cb7779968bc632edd6531bae810953b8c4f12018c0a1fde483c75f074a10eb49d2824e64733c280daeabe373cdf95c2a3307e6cf91c200c0e34655657447fb07

Score

10^/10

snatch evasion ransomware upx

Static task

static1

Behavioral task

behavioral1

Sample

e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d.sample.exe

Resource

win7v20210408

evasion ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d.sample.exe

Resource

win10v20210408

evasion ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d.sample
- Size
  
  4.2MB
- MD5
  
  d985a6610213773a43584afe1107dbd9
- SHA1
  
  4e743e81dcb4df6e21aacd0ad2918a5b20586127
- SHA256
  
  e8931967ed5a4d4e0d7787054cddee8911a7740b80373840b276f14e36bda57d
- SHA512
  
  cb7779968bc632edd6531bae810953b8c4f12018c0a1fde483c75f074a10eb49d2824e64733c280daeabe373cdf95c2a3307e6cf91c200c0e34655657447fb07
Score

9^/10

evasion ransomware
- Modifies boot configuration data using bcdedit
  ransomware evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

evasionransomware

behavioral2

evasionransomware

© 2018-2024

Terms | Privacy