Overview

overview

9

Static

static

3

d4086202f6...8f.exe

windows7-x64

9

d4086202f6...8f.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4086202f68c54e30d7f43f22c434782f48375293d7e0e1061353ff970c95c8f

  • Size

    418KB

  • Sample

    240425-eb8xfseh6z

  • MD5

    83c466db43382cd1edf829e4bf6daa03

  • SHA1

    67cd0aeb32146c92feb22adcb78798c98b4ba2bf

  • SHA256

    d4086202f68c54e30d7f43f22c434782f48375293d7e0e1061353ff970c95c8f

  • SHA512

    50fb37035197531ed4eb0c5742c422dcc9bea48b5efcf9f9d83c93727b3666f2a01831059ff9161ba92308e41e10aa601393a94e884770de89f7d0aab4f88d26

  • SSDEEP

    6144:RqlIyFESWu0SWu2shFAC2jnkbOupvuv+qM/qMWqlIyFESWu0SWu2shFAC2jnkbOU:tyosbpankbfcvzyosbpankbfcv8

Score
9/10
ransomware

Malware Config

Targets

    • Target

      d4086202f68c54e30d7f43f22c434782f48375293d7e0e1061353ff970c95c8f

    • Size

      418KB

    • MD5

      83c466db43382cd1edf829e4bf6daa03

    • SHA1

      67cd0aeb32146c92feb22adcb78798c98b4ba2bf

    • SHA256

      d4086202f68c54e30d7f43f22c434782f48375293d7e0e1061353ff970c95c8f

    • SHA512

      50fb37035197531ed4eb0c5742c422dcc9bea48b5efcf9f9d83c93727b3666f2a01831059ff9161ba92308e41e10aa601393a94e884770de89f7d0aab4f88d26

    • SSDEEP

      6144:RqlIyFESWu0SWu2shFAC2jnkbOupvuv+qM/qMWqlIyFESWu0SWu2shFAC2jnkbOU:tyosbpankbfcvzyosbpankbfcv8

    Score
    9/10
    ransomware

    • Renames multiple (3333) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks