Overview

overview

9

Static

static

3

992eb9140c...b0.exe

windows7-x64

9

992eb9140c...b0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0

  • Size

    104KB

  • Sample

    240425-bcrssace39

  • MD5

    bb8894f5d32610831df383254cc9c070

  • SHA1

    c5dd4c5c844ef445cc3de36e768363c2a28fc134

  • SHA256

    992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0

  • SHA512

    414d4b6fedadd911b8b12064f09bbf304c721f653e34df14a320ac44ad67efa2d60063f0560ffb0a28e65b52db7d84bbcb7cd01f5ce55876d2b0eafe37b21a6d

  • SSDEEP

    1536:W7ZDpApYbWjy0e+eq7ZDpApYbWjy0e+ed:6DWpBe+euDWpBe+ed

Score
9/10
ransomware

Malware Config

Targets

    • Target

      992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0

    • Size

      104KB

    • MD5

      bb8894f5d32610831df383254cc9c070

    • SHA1

      c5dd4c5c844ef445cc3de36e768363c2a28fc134

    • SHA256

      992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0

    • SHA512

      414d4b6fedadd911b8b12064f09bbf304c721f653e34df14a320ac44ad67efa2d60063f0560ffb0a28e65b52db7d84bbcb7cd01f5ce55876d2b0eafe37b21a6d

    • SSDEEP

      1536:W7ZDpApYbWjy0e+eq7ZDpApYbWjy0e+ed:6DWpBe+euDWpBe+ed

    Score
    9/10
    ransomware

    • Renames multiple (4813) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks