Overview

overview

9

Static

static

3

e016e262ee...03.exe

windows7-x64

9

e016e262ee...03.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e016e262ee57ec75ca27b7c274a22a3b9a788aef1f24ffd4123382d9211a0003

  • Size

    226KB

  • Sample

    240523-ejn71sdc57

  • MD5

    e0373cfcfa13504c6d1d6d7a981747e4

  • SHA1

    502c1314d59570fc57db132234e17235ebb5a146

  • SHA256

    e016e262ee57ec75ca27b7c274a22a3b9a788aef1f24ffd4123382d9211a0003

  • SHA512

    30602f591a1d5fbb0ad7ee947ac118244bd0c6440441ab985515dd089f976890cf7d38fca6d86baec38f5be75676beb12748a5df8bcc15a5609485edc5d6b025

  • SSDEEP

    3072:69WpQEJAzEWzVNOx0ypIzIu73mYdE9d3s9XL7EWzVNOx0ypIzIu73mYdE9d3s9Xo:nfAnCLGdE9XNgShcHUaO

Score
9/10
ransomware

Malware Config

Targets

    • Target

      e016e262ee57ec75ca27b7c274a22a3b9a788aef1f24ffd4123382d9211a0003

    • Size

      226KB

    • MD5

      e0373cfcfa13504c6d1d6d7a981747e4

    • SHA1

      502c1314d59570fc57db132234e17235ebb5a146

    • SHA256

      e016e262ee57ec75ca27b7c274a22a3b9a788aef1f24ffd4123382d9211a0003

    • SHA512

      30602f591a1d5fbb0ad7ee947ac118244bd0c6440441ab985515dd089f976890cf7d38fca6d86baec38f5be75676beb12748a5df8bcc15a5609485edc5d6b025

    • SSDEEP

      3072:69WpQEJAzEWzVNOx0ypIzIu73mYdE9d3s9XL7EWzVNOx0ypIzIu73mYdE9d3s9Xo:nfAnCLGdE9XNgShcHUaO

    Score
    9/10
    ransomware

    • Renames multiple (3452) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks