Analysis

  • max time kernel
    4294181s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20220223-en
  • submitted
    05-03-2022 23:54

General

  • Target

    5c322c7f3b22aa8c598a875dd9b28917fd1c5b8d20d12ca59cb4074af269269b.exe

  • Size

    1.5MB

  • MD5

    bafc669bbbeecb46825d0970f4e134b5

  • SHA1

    39d642ca982ddd4c36eb0561df5da2e03645581d

  • SHA256

    5c322c7f3b22aa8c598a875dd9b28917fd1c5b8d20d12ca59cb4074af269269b

  • SHA512

    506d11288f5fb3e75663e3314add9253a4e237f8725f34d4c1fdec2bd467274fb5d16cac1ed241fb929e3786eb69d5507317443fcf1fad01cf7ed719e5437033

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://myexternalip.com/raw

Signatures

  • Matrix Ransomware 64 IoCs

    Targeted ransomware with information collection and encryption functionality.