Overview

overview

10

Static

static

10

thanos-cleaned.exe

windows7_x64

10

thanos-cleaned.exe

windows10_x64

10

Resubmissions

04-11-2021 14:41

211104-r2dv8agha4 10

27-01-2021 22:14

210127-cr6bjqfx2e 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    thanos-cleaned.exe

  • Size

    92KB

  • MD5

    fe7dcc0f74e152a78963d560b2e3d148

  • SHA1

    f9cf1dd1a7e8b2dffc9e0195685cef5a625832ea

  • SHA256

    6a5090762c6058bc223e37e89f53832faad80995e3c5ed7e59ed9f5a5e604e47

  • SHA512

    a1d2de8abf7e56a2c29bfa38d0ae23584db2174ec8b14c6da3220e1c52ad52861714f8c363be843d16cdf13a22e0b74c16a1cb684ba102f132b09133338a169a

Score
10/10
ransomwarethanos

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Detect the Prometheus's Thanos ransomware using the build ID and the Killproc strings. 1 IoCs

    Detect the Prometheus's Thanos ransomware.

    ransomware
  • Thanos executable 1 IoCs
  • Thanos family
    thanos

Files

  • thanos-cleaned.exe
    .exe windows x86