Overview

overview

8

Static

static

1

bio4.exe

windows7-x64

1

bio4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    bio4.exe

  • Size

    8.5MB

  • Sample

    230207-tnydtafg41

  • MD5

    1265803eec1dc74506f101d3f1dc439d

  • SHA1

    84ef1dfe4dd70213568886f00fa21b7d1198e38e

  • SHA256

    bfc69b8ece26bb76079ddfd7a11c5dd87ddadaf4d98aaab3b97c39314fbf9e4e

  • SHA512

    5b87038347961248e8e3212b9e48334327a1a805d4b5bd18f524bd37f535f20451aa9d997bff56e0a79049ea345a6da3dbcac8739b0e4808a4a4824f28dde32f

  • SSDEEP

    98304:X+sinBkfjPJfleaNpG/i1OkEdyXQWdq0FnT3Cw0EOnis+ZVeo:XDinePJcq1O/H0npOnT+ZV9

Score
8/10
evasionransomware

Malware Config

Targets

    • Target

      bio4.exe

    • Size

      8.5MB

    • MD5

      1265803eec1dc74506f101d3f1dc439d

    • SHA1

      84ef1dfe4dd70213568886f00fa21b7d1198e38e

    • SHA256

      bfc69b8ece26bb76079ddfd7a11c5dd87ddadaf4d98aaab3b97c39314fbf9e4e

    • SHA512

      5b87038347961248e8e3212b9e48334327a1a805d4b5bd18f524bd37f535f20451aa9d997bff56e0a79049ea345a6da3dbcac8739b0e4808a4a4824f28dde32f

    • SSDEEP

      98304:X+sinBkfjPJfleaNpG/i1OkEdyXQWdq0FnT3Cw0EOnis+ZVeo:XDinePJcq1O/H0npOnT+ZV9

    Score
    8/10
    evasionransomware

    • Disables Task Manager via registry modification

      evasion

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks