d7daef379f16862e944b016d942edddcf50109c91261ec0997746beb9f88fcfb | Triage

Submit
Reports

Overview

overview

8

Static

static

3

WINDESTROYER.exe

windows10-1703-x64

Sharing

General

Target

WINDESTROYER.exe
Size

70KB
Sample

240225-mcbmcahd66
MD5

b038e44da900bfab8b606277518efb76
SHA1

16114af358755874aebf438e47aa0781c4b37807
SHA256

d7daef379f16862e944b016d942edddcf50109c91261ec0997746beb9f88fcfb
SHA512

37673091f363823cea48fa9bcb114bd9016e26cc064235703bc7135eb7abcb9719b18f23e477034ffc17c621db40090fda6fd42fe17f48d9c8eebe9e58bf85e0
SSDEEP

768:5lBnESDYopQAvf0uNPGrF7dHE/81kOl4tD1LKOczsnC8p5dQxr8tvngPRJd:9nEwYo+uJeHEUIBPiibdQxr8tvngR

Score

8^/10

evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

WINDESTROYER.exe

Resource

win10-20240221-en

evasion ransomware

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  WINDESTROYER.exe
- Size
  
  70KB
- MD5
  
  b038e44da900bfab8b606277518efb76
- SHA1
  
  16114af358755874aebf438e47aa0781c4b37807
- SHA256
  
  d7daef379f16862e944b016d942edddcf50109c91261ec0997746beb9f88fcfb
- SHA512
  
  37673091f363823cea48fa9bcb114bd9016e26cc064235703bc7135eb7abcb9719b18f23e477034ffc17c621db40090fda6fd42fe17f48d9c8eebe9e58bf85e0
- SSDEEP
  
  768:5lBnESDYopQAvf0uNPGrF7dHE/81kOl4tD1LKOczsnC8p5dQxr8tvngPRJd:9nEwYo+uJeHEUIBPiibdQxr8tvngR
Score

8^/10

evasion ransomware
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Drops desktop.ini file(s)
- Sets desktop wallpaper using registry
  ransomware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

evasionransomware

© 2018-2025

Terms | Privacy