mafiaware666 | 8bf1319fd0f77cd38f85d436e044f2d9e93e3f33844f20737117230b73b60f6c | Triage

Submit
Reports

Overview

overview

Static

static

2023-02-14...er.exe

windows7-x64

2023-02-14...er.exe

windows10-2004-x64

Sharing

General

Target

2023-02-14_acd46f88a6f90143090c342c10544ccf_kovter.exe
Size

3.3MB
Sample

230214-flvm9aah76
MD5

acd46f88a6f90143090c342c10544ccf
SHA1

bb90bed3b0d747feeac32536d75c6d153b34be0b
SHA256

8bf1319fd0f77cd38f85d436e044f2d9e93e3f33844f20737117230b73b60f6c
SHA512

82e91a14b2a7bfb659a566df7caf7f8dc28b61a14c504dd6ca23166ff2bb142114a43c5a3c70309022d813f34fb3aa63d321d964f3b6178e42b650ac0e56e84f
SSDEEP

24576:v54IAnWrfdt2Zj1vpo4ajyKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKI:CIAWjdAp1PagjLuSh3i+FtvkMzT+

Score

10^/10

mafiaware666 modiloader ransomware

Static task

static1

mafiaware666 modiloader

4 signatures

Behavioral task

behavioral1

Sample

2023-02-14_acd46f88a6f90143090c342c10544ccf_kovter.exe

Resource

win7-20220812-en

mafiaware666 ransomware

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2023-02-14_acd46f88a6f90143090c342c10544ccf_kovter.exe

Resource

win10v2004-20221111-en

mafiaware666 ransomware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2023-02-14_acd46f88a6f90143090c342c10544ccf_kovter.exe
- Size
  
  3.3MB
- MD5
  
  acd46f88a6f90143090c342c10544ccf
- SHA1
  
  bb90bed3b0d747feeac32536d75c6d153b34be0b
- SHA256
  
  8bf1319fd0f77cd38f85d436e044f2d9e93e3f33844f20737117230b73b60f6c
- SHA512
  
  82e91a14b2a7bfb659a566df7caf7f8dc28b61a14c504dd6ca23166ff2bb142114a43c5a3c70309022d813f34fb3aa63d321d964f3b6178e42b650ac0e56e84f
- SSDEEP
  
  24576:v54IAnWrfdt2Zj1vpo4ajyKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKI:CIAWjdAp1PagjLuSh3i+FtvkMzT+
Score

10^/10

mafiaware666 ransomware
- Detect MafiaWare666 ransomware
- MafiaWare666 Ransomware
  MafiaWare666 is ransomware written in C# with multiple variants.
  ransomware mafiaware666
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

mafiaware666modiloader

behavioral1

mafiaware666ransomware

behavioral2

mafiaware666ransomware

© 2018-2024

Terms | Privacy