Overview

overview

9

Static

static

60ee3fcd55...1c.exe

windows7-x64

9

60ee3fcd55...1c.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60ee3fcd55a7a0a0c4320f9306b1e8025d83667038e95c587442065930828f1c

  • Size

    145KB

  • Sample

    221124-e5fg1ace4s

  • MD5

    b5dd2c8e01297780ab45c61297c32813

  • SHA1

    1e6ca5587df0356ab6d6b31891494eabdec7db4e

  • SHA256

    60ee3fcd55a7a0a0c4320f9306b1e8025d83667038e95c587442065930828f1c

  • SHA512

    0125c1412375019b2dad8b3b98164ce3305cc02927a5654615accf9dddd6daeb45fa7d70e480c2307a58929236a784b0a5b742aa143b898e11840002ca45789b

  • SSDEEP

    3072:sEEw4kXONf9Hh4zKOvhDvEJLenNwwEEvClKxjOho:sOON9ojnNwYfxaC

Score
9/10
persistenceransomware

Malware Config

Targets

    • Target

      60ee3fcd55a7a0a0c4320f9306b1e8025d83667038e95c587442065930828f1c

    • Size

      145KB

    • MD5

      b5dd2c8e01297780ab45c61297c32813

    • SHA1

      1e6ca5587df0356ab6d6b31891494eabdec7db4e

    • SHA256

      60ee3fcd55a7a0a0c4320f9306b1e8025d83667038e95c587442065930828f1c

    • SHA512

      0125c1412375019b2dad8b3b98164ce3305cc02927a5654615accf9dddd6daeb45fa7d70e480c2307a58929236a784b0a5b742aa143b898e11840002ca45789b

    • SSDEEP

      3072:sEEw4kXONf9Hh4zKOvhDvEJLenNwwEEvClKxjOho:sOON9ojnNwYfxaC

    Score
    9/10
    persistenceransomware

    • Deletes shadow copies

      Ransomware often targets backup files to inhibit system recovery.

      ransomware

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks