Overview

overview

9

Static

static

3

c8f6e74a1f...64.exe

windows7-x64

9

c8f6e74a1f...64.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    153s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-04-2024 20:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8f6e74a1f7332c4296bd14110d74da47eb6f3f61f1b24806565a903ff7c3364.exe

  • Size

    93KB

  • MD5

    3bf3a2d0d670873d5d01d8d7f890f288

  • SHA1

    7b38a6ce34ef0a637531f59c0dad89793a6807ea

  • SHA256

    c8f6e74a1f7332c4296bd14110d74da47eb6f3f61f1b24806565a903ff7c3364

  • SHA512

    b29f94bcee7e200bba6c7a1a916dbd0a0f87f78585dab2859864576276aba0b326413d412b9c5fbe8d25d7b7374f65571c9056caa04a7fdce853f6cca9085a2c

  • SSDEEP

    1536:W7ZrpApojOPG0PGQJwFJwkpe+eTDPfFpsJOfFpsJCAdCjHKP76PDn+I+q:6rWpcOPxPke+e3fFpsJOfFpsJbgEODV

Score
9/10
ransomware

Malware Config

Signatures

  • Renames multiple (1359) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware
  • Drops file in Program Files directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c8f6e74a1f7332c4296bd14110d74da47eb6f3f61f1b24806565a903ff7c3364.exe
    "C:\Users\Admin\AppData\Local\Temp\c8f6e74a1f7332c4296bd14110d74da47eb6f3f61f1b24806565a903ff7c3364.exe"
    1⤵
    • Drops file in Program Files directory
    PID:2932
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1408 --field-trial-handle=2280,i,4114443225282860369,4764091921472631035,262144 --variations-seed-version /prefetch:8
    1⤵
      PID:2020

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\$Recycle.Bin\S-1-5-21-3808065738-1666277613-1125846146-1000\desktop.ini.tmp
      Filesize

      94KB

      MD5

      e766fe4d986b12a1b87f1b3f4661def4

      SHA1

      2053c2866e50d28781b2e0a37b444679ca2228a1

      SHA256

      1476c048a02e7d6e65dda854ba4298e3ef076445230e027ffbd1e2a0358bba6a

      SHA512

      dd735163258d862b4f3c1fbc6fae6a369f722c6d6ebc4a5fb536fa21a217f82c5000af7b3cc98e2883e2c3f689f5a4fe06a40ae697fe3bc52db0c68154b61cfb

      Download Submit

    • C:\libsmartscreen.dll.exe
      Filesize

      93KB

      MD5

      bd901dfee630ac52fa3c8169150d96e0

      SHA1

      f3839c229ba550dc6689f072fa1ab8efa7b997ce

      SHA256

      17d677ca8ea264f1d378d8238efccad86949218ba6a43c4a0c8bb75f3cffb419

      SHA512

      d688d3023b6eff1d2211c9b4cda372dd651eaf7512af2c3e7ad22b71af5b3984ecea1620ecff357dab4230a978c1959e97dc3229c2aadb03dbb37fb085ef0889

      Download Submit