General

  • Target

    PremiereCrack.7z

  • Size

    304KB

  • Sample

    211114-lt69xadbfm

  • MD5

    3c705f0f7a5225d1aaedfb91e4db95ca

  • SHA1

    26591ec037c41143a75a7831ff01f8fbb0e9b055

  • SHA256

    7610d3314d515447375503391452962cab78ee59658d55d07534eb8559f3abed

  • SHA512

    6b8a4743c62f596771e3b38441b31fa5e66094a933acde09b2ca0b853d841e48ea89be365b2584ed53ecd41b23ec722159e44aaeea5057ca65602770aa3fb201

Malware Config

Targets

    • Target

      PremiereCrack.exe

    • Size

      602KB

    • MD5

      34fd3756e03a0fc6002b269412262f04

    • SHA1

      c5f9c5edac33caddc0f170ce3cae385b3f04df87

    • SHA256

      331d3332d59dced547bb96d913112cfd2de67f488c541c35fea78c66f3729965

    • SHA512

      863a900185a819c45cd99390ee0477453c3637674dd37e6d3ef567519739d8ca45320caedc93125d6aaf95bb7814b24b6d16c726d70e90aca08b2ee83c0f7380

    • InfinityLock Ransomware

      Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks