Overview

overview

10

Static

static

3

Minecraft_....2.exe

windows10-1703-x64

7

Minecraft_....2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Minecraft_Launcher_V1_Setup-V.1.0.2.exe

  • Size

    75.3MB

  • Sample

    230725-chh89saf2w

  • MD5

    a9cb561021e372ffd1b3c832447e64a2

  • SHA1

    2e0401f7ea001d26eeecc92fdc3f3ac56badb289

  • SHA256

    2021a1f3c91ba5f2dce6c4ff4913a8ce17f05fd8876183aebf7728a645850afb

  • SHA512

    f0ee7559892da3cacd5908547b854d8b59a2b57a2e1ba8f71da74ca9a1fbee8d72bbe0774db82183a6fc8e3d35eace2bab08fba386ad23d4dff6bdf7b5a2977c

  • SSDEEP

    1572864:hq5W3CNu9CXeb6iOs0khnYA3demK56ioFkmsl0Y7yGAQcisz+H4sjh:hgJu9CuPOOnvtu5DoFk3HeGAQciK+n1

Score
10/10
egregordiscoveryransomware

Malware Config

Targets

    • Target

      Minecraft_Launcher_V1_Setup-V.1.0.2.exe

    • Size

      75.3MB

    • MD5

      a9cb561021e372ffd1b3c832447e64a2

    • SHA1

      2e0401f7ea001d26eeecc92fdc3f3ac56badb289

    • SHA256

      2021a1f3c91ba5f2dce6c4ff4913a8ce17f05fd8876183aebf7728a645850afb

    • SHA512

      f0ee7559892da3cacd5908547b854d8b59a2b57a2e1ba8f71da74ca9a1fbee8d72bbe0774db82183a6fc8e3d35eace2bab08fba386ad23d4dff6bdf7b5a2977c

    • SSDEEP

      1572864:hq5W3CNu9CXeb6iOs0khnYA3demK56ioFkmsl0Y7yGAQcisz+H4sjh:hgJu9CuPOOnvtu5DoFk3HeGAQciK+n1

    Score
    10/10
    egregordiscoveryransomware

    • Detected Egregor ransomware

    • Egregor Ransomware

      Variant of the Sekhmet ransomware first seen in September 2020.

      ransomwareegregor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks