Overview

overview

10

Static

static

10

53dd540551...37.exe

windows7-x64

10

53dd540551...37.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    53dd5405519bf464211345d76983973b6dab9e902b4cffb21d85dae9c9026e37.exe

  • Size

    707KB

  • MD5

    8d4f72965e610ebd3a5eea593adfd7f1

  • SHA1

    b79ab9c2002f416c081e4aed9b88b5ef390b2967

  • SHA256

    53dd5405519bf464211345d76983973b6dab9e902b4cffb21d85dae9c9026e37

  • SHA512

    4afaa338f8818abd379af60e0932832ffeca05c2d886907f9a67a70f6af1eadcab6f90807eb0ca623cf65dee66854ddba32cdb336919b80d7ff2261661bff243

  • SSDEEP

    6144:wcmwdMZ0aq9arLKkdMqJ+VYg/5ICAAQs+d5zSTamgEoOFzxLza1u8Wvnh:6uaTmkZJ+naie5OTamgEoKxLWtoh

Score
10/10

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing anti-forensic artifacts of deleting USN change journal. Observed in ransomware 1 IoCs
  • Detects executables containing commands for clearing Windows Event Logs 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables embedding registry key / value combination indicative of disabling Windows Defender features 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 53dd5405519bf464211345d76983973b6dab9e902b4cffb21d85dae9c9026e37.exe
    .exe windows:5 windows x86 arch:x86

    2f7da257a3159bdb9faeb823ef872a56


    Headers

    Imports

    Sections