Overview

overview

8

Static

static

d62b8ff3de...35.exe

windows10-2004-x64

8

Resubmissions

05/03/2025, 21:07

250305-zydp2sywbw 7

16/11/2022, 10:41

221116-mq9fjaeb31 8

07/09/2020, 18:51

200907-pl7ygfpqxs 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35.zip

  • Size

    32KB

  • Sample

    221116-mq9fjaeb31

  • MD5

    c12aca276815a42658d5fc8479766bf0

  • SHA1

    8d411a51c5c78dbc2cfcf6f0ed442b5f8dcf0cc1

  • SHA256

    6e765cbef6d47cb4e9ed599b360156c700e5f9f38eae31cb081595e1791c54af

  • SHA512

    503d31f03d8ffcfa927535bfb47321a14e1779f026a1ade4f02f2dee723aaa0a85905fb256bf7c4a3376eb027c71c4af11aa0532d8904e86f6b79799a8430bbd

  • SSDEEP

    768:j5uPP2vxHm/8BSqEF2o+gzqplFyYXQJWnFO8Fa:cPPou8rEF1+hXQJWs3

Score
8/10
persistenceransomwarespywarestealer

Malware Config

Targets

    • Target

      d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35

    • Size

      76KB

    • MD5

      a4782bbfe7300e51e2e3f962fe9ea33f

    • SHA1

      9b5facdba4a5dc8395874e3fd91b983048157f28

    • SHA256

      d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35

    • SHA512

      544a15f6039d1cac735f15d9c1a6504e8ac9836b2c5fa02f2620ed570bbe98c87950d389928927c0fa42b6c3223709db52af869ba491930370cd9757538d66d9

    • SSDEEP

      1536:ODuTzBQ+4UowCcI8UYJxs+j4mTRBIFe+5rttOmq:EuTzBSUgcI83dj4UIFektOm

    Score
    8/10
    persistenceransomwarespywarestealer

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

      ransomware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks