Overview

overview

9

Static

static

3

fixer (2).exe

windows7-x64

7

fixer (2).exe

windows10-2004-x64

9

Resubmissions

25-04-2024 10:28

240425-mhrwhshh5t 8

25-04-2024 07:41

240425-jjfm4agh47 9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fixer (2).exe

  • Size

    180KB

  • Sample

    240425-jjfm4agh47

  • MD5

    db1841bfa15492d1f6a4b46e921068a4

  • SHA1

    9526c45f7a9d59e0a5dda1b57ddbaf8425716e9e

  • SHA256

    176b2fbe38f0d14ee68c65c56e2731646473c0f51e92d3affd2048959fab6bd8

  • SHA512

    22110b41d057696ed5604c84fb40c881024cc8bb045135e258e6f7b0c5baac29d40b7b2b4cb1c4a3391ab2944b43c6b293ec628901abf6447124404111e41b18

  • SSDEEP

    3072:jh+8/+IVkJZ5UkcGkKLv/YiJlNZ9pshMniWGkJAPXsPzljLD3rv8Gz:jh95UZ5L8KL3YirfbshMiWFusPzljLDV

Score
9/10
ransomware

Malware Config

Targets

    • Target

      fixer (2).exe

    • Size

      180KB

    • MD5

      db1841bfa15492d1f6a4b46e921068a4

    • SHA1

      9526c45f7a9d59e0a5dda1b57ddbaf8425716e9e

    • SHA256

      176b2fbe38f0d14ee68c65c56e2731646473c0f51e92d3affd2048959fab6bd8

    • SHA512

      22110b41d057696ed5604c84fb40c881024cc8bb045135e258e6f7b0c5baac29d40b7b2b4cb1c4a3391ab2944b43c6b293ec628901abf6447124404111e41b18

    • SSDEEP

      3072:jh+8/+IVkJZ5UkcGkKLv/YiJlNZ9pshMniWGkJAPXsPzljLD3rv8Gz:jh95UZ5L8KL3YirfbshMiWFusPzljLDV

    Score
    9/10
    ransomware

    • Renames multiple (1280) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scheduled Task/Job

1
T1053

Persistence

Scheduled Task/Job

1
T1053

Privilege Escalation

Scheduled Task/Job

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks