Overview

overview

9

Static

static

3

9fe7725ce7...AS.exe

windows7-x64

9

9fe7725ce7...AS.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    9fe7725ce760f8d634bb69155ae040d0_NEAS

  • Size

    126KB

  • Sample

    240507-qmg4nahd4v

  • MD5

    9fe7725ce760f8d634bb69155ae040d0

  • SHA1

    339fbee2d67b49ee3d67a772f2b0825ef10668f6

  • SHA256

    7f49ffbe850b80e80dd140f510d0826c8a30672e6d35b21c9b720f2d030702bf

  • SHA512

    06ac71f9e4fc74dd2523e4b88e30c5bbf29b955753e3a32d02d217cd59388af7b93edb8dede70ccdeb34f10bb4e3d2dbe60f78b4b98ac8f1f9c3826a872fd927

  • SSDEEP

    1536:W7Z9pApQESOHepOHe8G+6E65TGATSKf7Z9pApQESOHepOHe8G+6E65TGATSKa:69WpQEJATt9WpQEJATq

Score
9/10
ransomware

Malware Config

Targets

    • Target

      9fe7725ce760f8d634bb69155ae040d0_NEAS

    • Size

      126KB

    • MD5

      9fe7725ce760f8d634bb69155ae040d0

    • SHA1

      339fbee2d67b49ee3d67a772f2b0825ef10668f6

    • SHA256

      7f49ffbe850b80e80dd140f510d0826c8a30672e6d35b21c9b720f2d030702bf

    • SHA512

      06ac71f9e4fc74dd2523e4b88e30c5bbf29b955753e3a32d02d217cd59388af7b93edb8dede70ccdeb34f10bb4e3d2dbe60f78b4b98ac8f1f9c3826a872fd927

    • SSDEEP

      1536:W7Z9pApQESOHepOHe8G+6E65TGATSKf7Z9pApQESOHepOHe8G+6E65TGATSKa:69WpQEJATt9WpQEJATq

    Score
    9/10
    ransomware

    • Renames multiple (137) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks