Overview

overview

10

Static

static

3

cd711f77c7...32.dll

windows7-x64

10

cd711f77c7...32.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd711f77c71b93a29494bba27afebb32

  • Size

    38KB

  • Sample

    231228-hnpk5acdg8

  • MD5

    cd711f77c71b93a29494bba27afebb32

  • SHA1

    a0d84f184191454e90d4bb2b7df52f8428a3b387

  • SHA256

    4bf92967b0d2aabec0cb16f3c3792e714857db3e41ad5768e3493780b9342465

  • SHA512

    5ad95f1fd3365a51d6438f054ecc7b849a3ef8197592403504e227402629b7b482e403e652aa0da36c7dd4f6733351639497c1de6d58df51876b906d7b261bec

  • SSDEEP

    768:e04Jtvq/PbXsmSh5Mj13C05bRUSMI2mpKghGR5ZL4Z/DtChqYWrYBZF:MJtvupS/Mj13CAUTI2mpF85ZcZ/JSN

Score
10/10
magniberransomware

Malware Config

Targets

    • Target

      cd711f77c71b93a29494bba27afebb32

    • Size

      38KB

    • MD5

      cd711f77c71b93a29494bba27afebb32

    • SHA1

      a0d84f184191454e90d4bb2b7df52f8428a3b387

    • SHA256

      4bf92967b0d2aabec0cb16f3c3792e714857db3e41ad5768e3493780b9342465

    • SHA512

      5ad95f1fd3365a51d6438f054ecc7b849a3ef8197592403504e227402629b7b482e403e652aa0da36c7dd4f6733351639497c1de6d58df51876b906d7b261bec

    • SSDEEP

      768:e04Jtvq/PbXsmSh5Mj13C05bRUSMI2mpKghGR5ZL4Z/DtChqYWrYBZF:MJtvupS/Mj13CAUTI2mpF85ZcZ/JSN

    Score
    10/10
    magniberransomware

    • Detect magniber ransomware

    • Magniber Ransomware

      Ransomware family widely seen in Asia being distributed by the Magnitude exploit kit.

      ransomwaremagniber

    • Deletes shadow copies

      Ransomware often targets backup files to inhibit system recovery.

      ransomware

    • Renames multiple (85) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks