Overview

overview

9

Static

static

3

cc35ffdabe...32.exe

windows7-x64

9

cc35ffdabe...32.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cc35ffdabeb57dbb4e3a55a4f3758ad0_exe32.exe

  • Size

    88KB

  • Sample

    231015-ygys8agh59

  • MD5

    cc35ffdabeb57dbb4e3a55a4f3758ad0

  • SHA1

    d5aaf1269d16a4f8f644deffdaa905d256d4b72f

  • SHA256

    01bd4af8c90f124e0295e5c2610deb89ef8970dd06d5ecd91fc13009a7fa69c3

  • SHA512

    11445af2f7c3b4b600d0b7a6ff33a728169fa6edf2535531b3d8f7a83ec22f82c218bd4f8a51d2316bcd2bd217ba6943cdc4b5cf1d7942e2b5ab4779656b94f7

  • SSDEEP

    768:W7Blp2sspARFbhJpupZ5pZZ7Blp2sspARFbhJpupZ5pZG:W7Z2sspApkZrZZ7Z2sspApkZrZG

Score
9/10
ransomware

Malware Config

Targets

    • Target

      cc35ffdabeb57dbb4e3a55a4f3758ad0_exe32.exe

    • Size

      88KB

    • MD5

      cc35ffdabeb57dbb4e3a55a4f3758ad0

    • SHA1

      d5aaf1269d16a4f8f644deffdaa905d256d4b72f

    • SHA256

      01bd4af8c90f124e0295e5c2610deb89ef8970dd06d5ecd91fc13009a7fa69c3

    • SHA512

      11445af2f7c3b4b600d0b7a6ff33a728169fa6edf2535531b3d8f7a83ec22f82c218bd4f8a51d2316bcd2bd217ba6943cdc4b5cf1d7942e2b5ab4779656b94f7

    • SSDEEP

      768:W7Blp2sspARFbhJpupZ5pZZ7Blp2sspARFbhJpupZ5pZG:W7Z2sspApkZrZZ7Z2sspApkZrZG

    Score
    9/10
    ransomware

    • Renames multiple (1489) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks