Overview

overview

10

Static

static

3

e24ae7e589...d7.exe

windows7-x64

10

e24ae7e589...d7.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e24ae7e5893261f10a932d5c3924f8d7

  • Size

    69KB

  • Sample

    240327-zd4ezaeh4t

  • MD5

    e24ae7e5893261f10a932d5c3924f8d7

  • SHA1

    5674918a9336eaef15e3ccbda33eefc5c741705f

  • SHA256

    25e6e293d8606938401318306e441b73eb4dcbd25855dbb348931c12b8f2448a

  • SHA512

    96e37cf219be9f45a3bd61615f6bad7c6df778e479278d9b272e416f2b480256b254ec161380ef95910ad8548319a0957a661c3b2b384c2719298efb6764eeff

  • SSDEEP

    1536:6JR2po8raAZ765kj02XUY6jhQ8C6woaXyygKY4+4WMd:WAS8rpWyjncl7pHygj4Rd

Score
10/10
evasionpersistenceransomwaretrojan

Malware Config

Targets

    • Target

      e24ae7e5893261f10a932d5c3924f8d7

    • Size

      69KB

    • MD5

      e24ae7e5893261f10a932d5c3924f8d7

    • SHA1

      5674918a9336eaef15e3ccbda33eefc5c741705f

    • SHA256

      25e6e293d8606938401318306e441b73eb4dcbd25855dbb348931c12b8f2448a

    • SHA512

      96e37cf219be9f45a3bd61615f6bad7c6df778e479278d9b272e416f2b480256b254ec161380ef95910ad8548319a0957a661c3b2b384c2719298efb6764eeff

    • SSDEEP

      1536:6JR2po8raAZ765kj02XUY6jhQ8C6woaXyygKY4+4WMd:WAS8rpWyjncl7pHygj4Rd

    Score
    10/10
    evasionpersistenceransomwaretrojan

    • Windows security bypass

      evasiontrojan

    • Disables RegEdit via registry modification

      evasion

    • Disables Task Manager via registry modification

      evasion

    • Modifies Shared Task Scheduler registry keys

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks