cb90f673229375bf46a4d8f59ac2c4d45246cfd0bbfcf93e0d9b31aafffe529d | Triage

Resubmissions

14/03/2024, 05:01

240314-fnmenabb6y 8

Sharing

Copy URL Twitter E-mail

General

Target

Minecraft Installer.exe
Size

38.4MB
Sample

240314-fnmenabb6y
MD5

c4fb521979a58f4433f652a4be5bac49
SHA1

dbeaac109b19f8ad6f922c2cc28864d802bfabc6
SHA256

cb90f673229375bf46a4d8f59ac2c4d45246cfd0bbfcf93e0d9b31aafffe529d
SHA512

165892a21268b504f8bd7ceec4ccbfec080be9ec028b6e7c4515e51e83d00f23c39583f86306151232250cae7f2672b28509b76f6eaa644e5aa235fc13401d87
SSDEEP

786432:vdQ0WQvaXP1QtIJ2j6+s7LWB75zuPNdS3ILv5qW80h9g63zJKmNQy:1QWvaXNiIJ2qHWB75iVdSGvcW7m6cI

Score

8^/10

evasion pyinstaller ransomware

Malware Config

Targets

- Target
  
  Minecraft Installer.exe
- Size
  
  38.4MB
- MD5
  
  c4fb521979a58f4433f652a4be5bac49
- SHA1
  
  dbeaac109b19f8ad6f922c2cc28864d802bfabc6
- SHA256
  
  cb90f673229375bf46a4d8f59ac2c4d45246cfd0bbfcf93e0d9b31aafffe529d
- SHA512
  
  165892a21268b504f8bd7ceec4ccbfec080be9ec028b6e7c4515e51e83d00f23c39583f86306151232250cae7f2672b28509b76f6eaa644e5aa235fc13401d87
- SSDEEP
  
  786432:vdQ0WQvaXP1QtIJ2j6+s7LWB75zuPNdS3ILv5qW80h9g63zJKmNQy:1QWvaXNiIJ2qHWB75iVdSGvcW7m6cI
Score

8^/10

evasion ransomware
- Stops running service(s)
  evasion
- Loads dropped DLL
- Sets desktop wallpaper using registry
  ransomware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Service Stop

Tasks

static1

behavioral1

evasionransomware