Overview

overview

10

Static

static

10

7e22f30ab3...58.exe

windows7-x64

10

7e22f30ab3...58.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    7e22f30ab324d9512e42d830a1f528f5002bc42aba4e3d4a80ef41987aab7858.exe

  • Size

    707KB

  • MD5

    24edfd317cc224007ff627aab7b967e8

  • SHA1

    cb69c3131082b832fcf5a1a66810c3e304949245

  • SHA256

    7e22f30ab324d9512e42d830a1f528f5002bc42aba4e3d4a80ef41987aab7858

  • SHA512

    74205b2c9aa7f447505d4dcd01799fd4db27d48af41d85e70eabfe6acf31dabe9191599d8d9784dbf60e2a35e3cd28bf3d3480a70d9a34e72cd414e4b0958219

  • SSDEEP

    6144:wcmwdMZ0aq9arLKkdMqJ+VYg/5ICAAQs+d5zSTamgEoOFzxLza1f8ovnh:6uaTmkZJ+naie5OTamgEoKxLW2Wh

Score
10/10

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing anti-forensic artifacts of deleting USN change journal. Observed in ransomware 1 IoCs
  • Detects executables containing commands for clearing Windows Event Logs 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables embedding registry key / value combination indicative of disabling Windows Defender features 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7e22f30ab324d9512e42d830a1f528f5002bc42aba4e3d4a80ef41987aab7858.exe
    .exe windows:5 windows x86 arch:x86

    2f7da257a3159bdb9faeb823ef872a56


    Headers

    Imports

    Sections