b727110e6644be2f50e5bb8b552bee3b50310f3bf9051de721740c8f44379681 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

New Folder.zip

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

New Folder.zip
Size

361KB
Sample

230320-stdqxsgb61
MD5

a6347af73c97147b06ba14c4762085bf
SHA1

6af1d15f4e6da7390d1e826e4f2d0519b4fc96f1
SHA256

b727110e6644be2f50e5bb8b552bee3b50310f3bf9051de721740c8f44379681
SHA512

11c0b5ac2da49d42129b044cea36166446b8d7019e85fb06cf6f23b0876e7a7b72e12b4734506ede1d6b15c0888fecb00b50f3934ee9f4dafc079b0df0c7097f
SSDEEP

6144:hxUgB+xBy8ilSoWXSE/8tkb5c1fZx3C64/6S2YE0tJ5/6ASf9r4Rk9AWX:jUguZilSxXbKU61fZx3Re67cJ5WVr6kH

Score

8^/10

persistence ransomware spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

New Folder.zip

Resource

win10v2004-20230220-en

persistence ransomware spyware stealer

windows10-2004-x64

15 signatures

1200 seconds

Malware Config

Targets

- Target
  
  New Folder.zip
- Size
  
  361KB
- MD5
  
  a6347af73c97147b06ba14c4762085bf
- SHA1
  
  6af1d15f4e6da7390d1e826e4f2d0519b4fc96f1
- SHA256
  
  b727110e6644be2f50e5bb8b552bee3b50310f3bf9051de721740c8f44379681
- SHA512
  
  11c0b5ac2da49d42129b044cea36166446b8d7019e85fb06cf6f23b0876e7a7b72e12b4734506ede1d6b15c0888fecb00b50f3934ee9f4dafc079b0df0c7097f
- SSDEEP
  
  6144:hxUgB+xBy8ilSoWXSE/8tkb5c1fZx3C64/6S2YE0tJ5/6ASf9r4Rk9AWX:jUguZilSxXbKU61fZx3Re67cJ5WVr6kH
Score

8^/10

persistence ransomware spyware stealer
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops startup file
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceransomwarespywarestealer

© 2018-2025

Terms | Privacy