Overview

overview

9

Static

static

3

bf310510d1...1d.exe

windows7-x64

9

bf310510d1...1d.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf310510d1491fae38dc0764024aae7af817fd2ca22dc8e0971c61b1bd020d1d

  • Size

    161KB

  • Sample

    240510-ct1bxsgg32

  • MD5

    28144dbbc5972aed13dddc7948158c4f

  • SHA1

    1e74f73caadbdf8981f55d4208c7d46bd4f178ad

  • SHA256

    bf310510d1491fae38dc0764024aae7af817fd2ca22dc8e0971c61b1bd020d1d

  • SHA512

    117f46150d7c04d3536ae5954da0552dc95049f6709d9a146d1966fb63e8271729322359600b25a9a10c8357be88733843d140527767681f1fd85204e2977445

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ7udute7WpMaxeb0CYJ97lEYNR73e+eKZ7udk:RqKvb0CYJ973e+eKZ7uduIqKvb0CYJ9f

Score
9/10
ransomware

Malware Config

Targets

    • Target

      bf310510d1491fae38dc0764024aae7af817fd2ca22dc8e0971c61b1bd020d1d

    • Size

      161KB

    • MD5

      28144dbbc5972aed13dddc7948158c4f

    • SHA1

      1e74f73caadbdf8981f55d4208c7d46bd4f178ad

    • SHA256

      bf310510d1491fae38dc0764024aae7af817fd2ca22dc8e0971c61b1bd020d1d

    • SHA512

      117f46150d7c04d3536ae5954da0552dc95049f6709d9a146d1966fb63e8271729322359600b25a9a10c8357be88733843d140527767681f1fd85204e2977445

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ7udute7WpMaxeb0CYJ97lEYNR73e+eKZ7udk:RqKvb0CYJ973e+eKZ7uduIqKvb0CYJ9f

    Score
    9/10
    ransomware

    • Renames multiple (4043) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks