Overview

overview

9

Static

static

3

380477dfdb...76.exe

windows7-x64

9

380477dfdb...76.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    380477dfdbc9f91e7cfd327afd6070fb70b6487ae1a6c1486d44f5ee42944d76

  • Size

    86KB

  • Sample

    240522-y9cfpafd4v

  • MD5

    fa39e35405287442f8dae80af227a2fc

  • SHA1

    7a9648f52ac9cbac477ffd727ae6c265e4ed755a

  • SHA256

    380477dfdbc9f91e7cfd327afd6070fb70b6487ae1a6c1486d44f5ee42944d76

  • SHA512

    0a3c49f7c596922ad77fbb0ebca7bcd04b69d4d7ad2ba8071dfc89c4c09eaddfab6977c452e37f905b1fa62eed8daa0f897a0695e5bc4906bc0a51f7f34a8f13

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFo7BlpNLpARFbhblkYlkuvIYF6JO:W7ZNLpApCZuvIY27ZNLpApCZuvIYR

Score
9/10
ransomware

Malware Config

Targets

    • Target

      380477dfdbc9f91e7cfd327afd6070fb70b6487ae1a6c1486d44f5ee42944d76

    • Size

      86KB

    • MD5

      fa39e35405287442f8dae80af227a2fc

    • SHA1

      7a9648f52ac9cbac477ffd727ae6c265e4ed755a

    • SHA256

      380477dfdbc9f91e7cfd327afd6070fb70b6487ae1a6c1486d44f5ee42944d76

    • SHA512

      0a3c49f7c596922ad77fbb0ebca7bcd04b69d4d7ad2ba8071dfc89c4c09eaddfab6977c452e37f905b1fa62eed8daa0f897a0695e5bc4906bc0a51f7f34a8f13

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYFo7BlpNLpARFbhblkYlkuvIYF6JO:W7ZNLpApCZuvIY27ZNLpApCZuvIYR

    Score
    9/10
    ransomware

    • Renames multiple (4340) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks