3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

3d4e57bc37...c7.exe

windows7-x64

9

3d4e57bc37...c7.exe

windows10-2004-x64

9

Sharing

General

Target

3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7
Size

152KB
Sample

240428-y6v4magc69
MD5

56897c6aa50430e7ad86ebd7bf694605
SHA1

52adb96a9d3bb4fe364dbc4c1c4ba12d3f947630
SHA256

3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7
SHA512

ad3c0bbf09bf77a0f7ddd0a2f139fdf25dcb052389caa2485c332765645bba4b512e650445b5ff208cfea7adc19bd50e7f1607d6205c47c8cc51c64a829df6fe
SSDEEP

3072:6e7WpnhkElEa0NQn0NQqe7WpnhkElEa0NQn0NQEULK:RqthlqthIUW

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7.exe

Resource

win7-20240220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7
- Size
  
  152KB
- MD5
  
  56897c6aa50430e7ad86ebd7bf694605
- SHA1
  
  52adb96a9d3bb4fe364dbc4c1c4ba12d3f947630
- SHA256
  
  3d4e57bc3713d78ef6efcdf47d8c6d0cf3b54ffdac161225a007d2ab3a5689c7
- SHA512
  
  ad3c0bbf09bf77a0f7ddd0a2f139fdf25dcb052389caa2485c332765645bba4b512e650445b5ff208cfea7adc19bd50e7f1607d6205c47c8cc51c64a829df6fe
- SSDEEP
  
  3072:6e7WpnhkElEa0NQn0NQqe7WpnhkElEa0NQn0NQEULK:RqthlqthIUW
Score

9^/10

ransomware
- Renames multiple (5655) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy