bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

bbe05e8b2f...55.exe

windows7-x64

9

bbe05e8b2f...55.exe

windows10-2004-x64

9

Sharing

General

Target

bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155
Size

247KB
Sample

240515-cwgycsdc46
MD5

68a8ec012cb2be6df118f39b0f8b7e59
SHA1

ce12654b249b97d72f868130a4cb9fae68b65947
SHA256

bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155
SHA512

64e6907028c32bcfbcd26ad12a327f1ae5e5bf80a8d21905f96a19c71b9ce545a4293ac3c68a923d4697f6218af7691ac521f046dd81ca0c7c5deecac937407e
SSDEEP

3072:6QWpkzlfFpsJOfFpsJ+n6j+QWpkzlfFpsJOfFpsJ+n6j7:Wo5

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155
- Size
  
  247KB
- MD5
  
  68a8ec012cb2be6df118f39b0f8b7e59
- SHA1
  
  ce12654b249b97d72f868130a4cb9fae68b65947
- SHA256
  
  bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155
- SHA512
  
  64e6907028c32bcfbcd26ad12a327f1ae5e5bf80a8d21905f96a19c71b9ce545a4293ac3c68a923d4697f6218af7691ac521f046dd81ca0c7c5deecac937407e
- SSDEEP
  
  3072:6QWpkzlfFpsJOfFpsJ+n6j+QWpkzlfFpsJOfFpsJ+n6j7:Wo5
Score

9^/10

ransomware
- Renames multiple (3495) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy