targetcompany | 98a0fe90ef04c3a7503f2b700415a50e62395853bd1bab9e75fbe75999c0769e

Resubmissions

10/02/2022, 19:36

220210-ybmtrsagdp 10

08/02/2022, 23:24

220208-3dzcssgegm 10

Sharing

Copy URL

Twitter E-mail

General

Target

98a0fe90ef04c3a7503f2b700415a50e62395853bd1bab9e75fbe75999c0769e
Size

127KB
MD5

c731cbf04c68430f31ff0ab1b0b1f054
SHA1

f3c14e25584475f01f417e3ec45474aa8de4400d
SHA256

98a0fe90ef04c3a7503f2b700415a50e62395853bd1bab9e75fbe75999c0769e
SHA512

1f188fa26c4554f4c3fdb73ea7c105b76a354f6444f4977eee5fc0b31df9b880118e912bb86bdf93874c55b081713ae51b32115ab600bdeda0ec62e61f3b7b61
SSDEEP

3072:jJ+bDdscrTKXy8h+N7syPi6+TNLvHRoJsJ5c:j8DCgTKi8hu7pPifTNmP

Score

10^/10

ransomware targetcompany

Malware Config

Signatures

TargetCompany Payload 1 IoCs

resource	yara_rule
sample	family_targetcompany

TargetCompany Ransomware 1 IoCs

Detect TargetCompany Ransomware.

ransomware

resource	yara_rule
sample	family_targetcompany_v2

Targetcompany family
targetcompany

Files

98a0fe90ef04c3a7503f2b700415a50e62395853bd1bab9e75fbe75999c0769e
.exe windows x86

1c1a27cb29df6923d860b330c9f7a54f

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
Sleep
CopyFileW
LeaveCriticalSection
TerminateProcess
ReadFile
GetModuleFileNameW
CreateFileW
lstrcatA
lstrcmpW
MultiByteToWideChar
GetFileSizeEx
GetLastError
GetProcAddress
MoveFileW
EnterCriticalSection
FindClose
PostQueuedCompletionStatus
DeviceIoControl
GetSystemInfo
WaitForMultipleObjects
Process32NextW
lstrcmpiW
CreateIoCompletionPort
GetModuleHandleA
lstrcatW
FindNextFileW
CreateToolhelp32Snapshot
DeleteCriticalSection
GetCurrentThreadId
OpenProcess
CloseHandle
GetWindowsDirectoryW
GetCurrentProcessId
LocalFree
lstrcpyW
CreateThread
FindVolumeClose
SetEvent
TerminateThread
FindNextVolumeW
GetVolumePathNamesForVolumeNameW
GetFileType
CreateEventW
QueryDosDeviceW
DuplicateHandle
FindFirstVolumeW
InitializeCriticalSection
GetUserDefaultLangID
WriteFile
GetCurrentThread
GetTickCount
GetModuleHandleW
FindFirstFileExW
GetLogicalDrives
WaitForSingleObject
QueryPerformanceCounter
SetFilePointerEx
GetCurrentProcess
GetQueuedCompletionStatus
InterlockedIncrement
SetErrorMode
GetDriveTypeW
lstrlenA
GetComputerNameA
GetCommandLineW
ExitProcess
CreateFileA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetDiskFreeSpaceExW
lstrlenW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetProcessHeap
SetEndOfFile
GetLocaleInfoA
FlushFileBuffers
SetStdHandle
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapFree
HeapAlloc
HeapReAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
GetModuleFileNameA
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
InterlockedDecrement
HeapSize
RaiseException
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetFilePointer
GetConsoleCP
GetConsoleMode

advapi32

LookupPrivilegeValueW
LsaFreeMemory
AdjustTokenPrivileges
FreeSid
SetEntriesInAclW
AllocateAndInitializeSid
CryptGenRandom
LsaClose
StartServiceW
CreateServiceW
SetNamedSecurityInfoW
CryptReleaseContext
LsaOpenPolicy
OpenSCManagerW
OpenThreadToken
LsaQueryInformationPolicy
CryptAcquireContextW
OpenProcessToken
CloseServiceHandle

shell32

CommandLineToArgvW
ShellExecuteW

netapi32

NetApiBufferFree
NetShareEnum

shlwapi

wnsprintfW
StrStrIW
SHDeleteKeyW
StrCmpNIW
StrCmpNW
wnsprintfA

iphlpapi

GetIpNetTable

ws2_32

inet_ntoa

wininet

InternetReadFile
InternetCloseHandle
InternetOpenW
InternetQueryOptionW
InternetQueryDataAvailable
InternetCrackUrlW
InternetConnectW
HttpSendRequestW
InternetSetOptionW
HttpOpenRequestW

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

1c1a27cb29df6923d860b330c9f7a54f

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

shell32

netapi32

shlwapi

iphlpapi

ws2_32

wininet

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 5KB - Virtual size: 23KB

.rsrc Size: 512B - Virtual size: 448B

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 5KB - Virtual size: 23KB

.rsrc
Size: 512B - Virtual size: 448B

.reloc
Size: 8KB - Virtual size: 8KB