fc592b5fecf2141694ce28a79d7bbc1afb2ea8bc9eb80feb6bf0c218e8f8b81c | Triage

Submit
Reports

Overview

overview

9

Static

static

3

2024-05-21...mi.exe

windows7-x64

9

2024-05-21...mi.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-21_091466242bd0c382222bed589183ab61_bkransomware_wapomi
Size

215KB
Sample

240521-qnxwhafe4x
MD5

091466242bd0c382222bed589183ab61
SHA1

efa05495f51372c50ced5c8279d8ad19eae6855a
SHA256

fc592b5fecf2141694ce28a79d7bbc1afb2ea8bc9eb80feb6bf0c218e8f8b81c
SHA512

eb7e769a8dbe7c2718a89cb63e90fe0511b0faacb0e9bf7342e58b1b0e23bdce9a97bf1aee0c45c5e1b894b1d210598b99666cbbf45c9f8d0244f3dbe07cd5e3
SSDEEP

3072:R666SmGgfYMSLpt690O4EHIsxeqvrvuSUdybQHoAw3MVDdVY3KiGCH:R2SSI60OhHLjv1nt3KD

Score

9^/10

aspackv2

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-21_091466242bd0c382222bed589183ab61_bkransomware_wapomi.exe

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-21_091466242bd0c382222bed589183ab61_bkransomware_wapomi.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-21_091466242bd0c382222bed589183ab61_bkransomware_wapomi
- Size
  
  215KB
- MD5
  
  091466242bd0c382222bed589183ab61
- SHA1
  
  efa05495f51372c50ced5c8279d8ad19eae6855a
- SHA256
  
  fc592b5fecf2141694ce28a79d7bbc1afb2ea8bc9eb80feb6bf0c218e8f8b81c
- SHA512
  
  eb7e769a8dbe7c2718a89cb63e90fe0511b0faacb0e9bf7342e58b1b0e23bdce9a97bf1aee0c45c5e1b894b1d210598b99666cbbf45c9f8d0244f3dbe07cd5e3
- SSDEEP
  
  3072:R666SmGgfYMSLpt690O4EHIsxeqvrvuSUdybQHoAw3MVDdVY3KiGCH:R2SSI60OhHLjv1nt3KD
Score

9^/10

aspackv2
- Detects executables packed with ASPack
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy