117fc30c25b1f28cd923b530ab9f91a0a818925b0b89b8bc9a7f820a9e630464 | Triage

Submit
Reports

Overview

overview

9

Static

static

a7ab0969bf...17.exe

windows10-2004-x64

9

Resubmissions

29-11-2022 18:35

221129-w8cc7aec47 9

09-09-2022 12:23

220909-pkq34sbhfq 10

Sharing

General

Target

a7ab0969bf6641cd0c7228ae95f6d217
Size

7.7MB
Sample

221129-w8cc7aec47
MD5

a7ab0969bf6641cd0c7228ae95f6d217
SHA1

002971b6d178698bf7930b5b89c201750d80a07e
SHA256

117fc30c25b1f28cd923b530ab9f91a0a818925b0b89b8bc9a7f820a9e630464
SHA512

7e1cce428e3b80b60635c354801af6e86354c9437ba7a661ca6a922c17057a16439a97d1ea11873eb359c05018df9eb6040b72fa97b30cf4d04cae56bf052b8a
SSDEEP

49152:mwHittZSrb/TjvO90dL3BmAFd4A64nsfJTGNHltPgQjre0Q2hEsj2kcR9RsU/2LU:mwUs3dfC2at9kDXdmG55wuzZqGdE

Score

9^/10

ransomware

Static task

static1

Behavioral task

behavioral1

Sample

a7ab0969bf6641cd0c7228ae95f6d217.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  a7ab0969bf6641cd0c7228ae95f6d217
- Size
  
  7.7MB
- MD5
  
  a7ab0969bf6641cd0c7228ae95f6d217
- SHA1
  
  002971b6d178698bf7930b5b89c201750d80a07e
- SHA256
  
  117fc30c25b1f28cd923b530ab9f91a0a818925b0b89b8bc9a7f820a9e630464
- SHA512
  
  7e1cce428e3b80b60635c354801af6e86354c9437ba7a661ca6a922c17057a16439a97d1ea11873eb359c05018df9eb6040b72fa97b30cf4d04cae56bf052b8a
- SSDEEP
  
  49152:mwHittZSrb/TjvO90dL3BmAFd4A64nsfJTGNHltPgQjre0Q2hEsj2kcR9RsU/2LU:mwUs3dfC2at9kDXdmG55wuzZqGdE
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy