8b0d359eb8167b044bf25b943820a3b71e94bc3f0c26d9ba295dee1df014a7c0 | Triage

Submit
Reports

Overview

overview

8

Static

static

RansomWare.exe

windows7_x64

8

RansomWare.exe

windows10_x64

8

Sharing

General

Target

RansomWare.exe
Size

158KB
Sample

211022-hkjkpscban
MD5

d3c355a11849cbd0d4f3937a79c81c96
SHA1

bdc7567d33da81654395d8fefc7500d124d87a31
SHA256

8b0d359eb8167b044bf25b943820a3b71e94bc3f0c26d9ba295dee1df014a7c0
SHA512

a9091d36341135e74ba7918bc1f1f3960d8d1e049361ccea700662311bdbaa6e8c23a224ca0d640c596d5f8b269839e50104de5e5f96fcfe57ef8523d8a0ce7d

Score

8^/10

evasion ransomware

Static task

static1

Behavioral task

behavioral1

Sample

RansomWare.exe

Resource

win7-en-20211014

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

RansomWare.exe

Resource

win10-en-20210920

evasion ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  RansomWare.exe
- Size
  
  158KB
- MD5
  
  d3c355a11849cbd0d4f3937a79c81c96
- SHA1
  
  bdc7567d33da81654395d8fefc7500d124d87a31
- SHA256
  
  8b0d359eb8167b044bf25b943820a3b71e94bc3f0c26d9ba295dee1df014a7c0
- SHA512
  
  a9091d36341135e74ba7918bc1f1f3960d8d1e049361ccea700662311bdbaa6e8c23a224ca0d640c596d5f8b269839e50104de5e5f96fcfe57ef8523d8a0ce7d
Score

8^/10

evasion ransomware
- Disables Task Manager via registry modification
  evasion
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

evasionransomware

© 2018-2024

Terms | Privacy