Overview

overview

10

Static

static

10

0597302ff0...0e.exe

windows7-x64

10

0597302ff0...0e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0597302ff00b1d3cfc79e81952955d852a62e76929348bb279ccdafae1ca010e.sample

  • Size

    277KB

  • Sample

    240227-v4j2ssfd2w

  • MD5

    1ba9aa5710b0bf3e271329994311d4a0

  • SHA1

    d6fbad1833aa5285de18e425af58bc3420722c4b

  • SHA256

    0597302ff00b1d3cfc79e81952955d852a62e76929348bb279ccdafae1ca010e

  • SHA512

    8f81ddf7c6ab01fe04a04daec1bb9af87ed3cb9cc195d8628c7f5a896aff38f798d00499b9110761cfedada42e3a23c818516c17243aad081590bd0831f6ac71

  • SSDEEP

    6144:6Z1gm4z+Rp4PCL8YM6c2G/FtmUPvo39UPdTNN4:6l4qnM6c26s39UNN4

Score
10/10
medusalocker

Malware Config

Targets

    • Target

      0597302ff00b1d3cfc79e81952955d852a62e76929348bb279ccdafae1ca010e.sample

    • Size

      277KB

    • MD5

      1ba9aa5710b0bf3e271329994311d4a0

    • SHA1

      d6fbad1833aa5285de18e425af58bc3420722c4b

    • SHA256

      0597302ff00b1d3cfc79e81952955d852a62e76929348bb279ccdafae1ca010e

    • SHA512

      8f81ddf7c6ab01fe04a04daec1bb9af87ed3cb9cc195d8628c7f5a896aff38f798d00499b9110761cfedada42e3a23c818516c17243aad081590bd0831f6ac71

    • SSDEEP

      6144:6Z1gm4z+Rp4PCL8YM6c2G/FtmUPvo39UPdTNN4:6l4qnM6c26s39UNN4

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks