Analysis
-
max time kernel
122s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
15-01-2024 11:48
Behavioral task
behavioral1
Sample
5d01ee3df18142b32a06ebfc1bea0069.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
5d01ee3df18142b32a06ebfc1bea0069.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
5d01ee3df18142b32a06ebfc1bea0069.exe
-
Size
13.3MB
-
MD5
5d01ee3df18142b32a06ebfc1bea0069
-
SHA1
938a22b246036249d42afb8e4e59bcccb1dbf9f5
-
SHA256
5903537c921528fa07c6992fd2c0598031069d6c54da54665da6bb847dae8373
-
SHA512
f434ba5841bdcf081534dc955adcea32d007271dd66207bc34d3fa3397d62f38d0b9af60eb5e74eb8e327ae73a69ba2a26e50cf5d440643e9c8629fd1ce7160f
-
SSDEEP
98304:7L5t1g1shz7BWnqnTj/C3C185iK1lV3J+yZSqtRUWfIIbd4LLVjTzyjMfzP6:Rt1g1sKT1iK55cVryjMfb
Score
10/10
Malware Config
Signatures
-
Detects Rust Elf variant of Hive Ransomware 1 IoCs
resource yara_rule behavioral1/memory/1996-0-0x0000000000400000-0x000000000115C000-memory.dmp hive_rust_elf -
Hive
A ransomware written in Golang first seen in June 2021.