Overview

overview

9

Static

static

3

480621369f...2b.exe

windows7-x64

9

480621369f...2b.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    480621369fcc4de0030302189368f87f433cb1b7093ad8a72d775bfe75694f2b

  • Size

    68KB

  • Sample

    240514-z336hahc98

  • MD5

    bbcc6746d6b2bbbded5a85f0ec7c1f95

  • SHA1

    c2a6df56b81d54d22f68b9eed9ccffc109729e96

  • SHA256

    480621369fcc4de0030302189368f87f433cb1b7093ad8a72d775bfe75694f2b

  • SHA512

    7d6ce99e66277d2d97258eb760ab34b32a22262f27beb10893cbae2e229f0750f85ebb05deb81841fcb8640821075f5e9242cebb9c1f915bc453562a122c2de8

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvX4AJ44AJJ7BlpNLpARFbhblkYlkuvX4AJ44AJOuF8:W7ZNLpApCZuvM7ZNLpApCZuvj

Score
9/10
ransomware

Malware Config

Targets

    • Target

      480621369fcc4de0030302189368f87f433cb1b7093ad8a72d775bfe75694f2b

    • Size

      68KB

    • MD5

      bbcc6746d6b2bbbded5a85f0ec7c1f95

    • SHA1

      c2a6df56b81d54d22f68b9eed9ccffc109729e96

    • SHA256

      480621369fcc4de0030302189368f87f433cb1b7093ad8a72d775bfe75694f2b

    • SHA512

      7d6ce99e66277d2d97258eb760ab34b32a22262f27beb10893cbae2e229f0750f85ebb05deb81841fcb8640821075f5e9242cebb9c1f915bc453562a122c2de8

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvX4AJ44AJJ7BlpNLpARFbhblkYlkuvX4AJ44AJOuF8:W7ZNLpApCZuvM7ZNLpApCZuvj

    Score
    9/10
    ransomware

    • Renames multiple (3822) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks