e130c221e4c0bae9e2baabaf5c1da3606cd19eebcc2714d7cbcb45a24628b7ae | Triage

Submit
Reports

Overview

overview

9

Static

static

1

Create_Ins...64.exe

windows10-2004-x64

9

Resubmissions

07/11/2023, 12:32

231107-pqxsvaed2x 9

07/11/2023, 12:24

231107-pk2vlsfh48 9

Sharing

Copy URL Twitter E-mail

General

Target

Create_Installer_INVPROSA_2024_Portuguese_WIN64.exe
Size

14.9MB
Sample

231107-pqxsvaed2x
MD5

011590ce136c27488400de1bcec0b873
SHA1

d8bcb0bf8529a9388f158eb2ce12738e05d412b5
SHA256

e130c221e4c0bae9e2baabaf5c1da3606cd19eebcc2714d7cbcb45a24628b7ae
SHA512

16df9a35e885e71cc86ed568cafab843c82b2c18513815f541892d496973beaa6bb8894b5d599ad82c8bff09daa9b4056cb59ac2eec6ac8ee46c48b659f07259
SSDEEP

393216:ROJ6YqBI9Wd9gMcVC0m3KBFXfyGjFu4DQN2VHfX7op1:sCBvd9gMtu5JFuodVHfrM1

Score

9^/10

ransomware

Static task

static1

Behavioral task

behavioral1

Sample

Create_Installer_INVPROSA_2024_Portuguese_WIN64.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

10 signatures

300 seconds

Malware Config

Targets

- Target
  
  Create_Installer_INVPROSA_2024_Portuguese_WIN64.exe
- Size
  
  14.9MB
- MD5
  
  011590ce136c27488400de1bcec0b873
- SHA1
  
  d8bcb0bf8529a9388f158eb2ce12738e05d412b5
- SHA256
  
  e130c221e4c0bae9e2baabaf5c1da3606cd19eebcc2714d7cbcb45a24628b7ae
- SHA512
  
  16df9a35e885e71cc86ed568cafab843c82b2c18513815f541892d496973beaa6bb8894b5d599ad82c8bff09daa9b4056cb59ac2eec6ac8ee46c48b659f07259
- SSDEEP
  
  393216:ROJ6YqBI9Wd9gMcVC0m3KBFXfyGjFu4DQN2VHfX7op1:sCBvd9gMtu5JFuodVHfrM1
Score

9^/10

ransomware
- Renames multiple (127) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Renames multiple (61) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Drops desktop.ini file(s)
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy