0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a | Triage

Submit
Reports

Overview

overview

9

Static

static

3

0ca1af6e27...9a.exe

windows7-x64

9

0ca1af6e27...9a.exe

windows10-2004-x64

9

Sharing

General

Target

0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a
Size

89KB
Sample

240525-w8yanaec34
MD5

247957aebed186788f541f1081a92569
SHA1

6a3ed72744426179880e8d37c2a52a2b51162e8d
SHA256

0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a
SHA512

a1914ab3d80597905ffcfbe4b2d5747120d704dca186c6e94ffb3cf39f6a190e55fd0cf5a94f2295773e66392fadfce283290065365560f753de348905de62b0
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/0VXaqvd:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXp

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a
- Size
  
  89KB
- MD5
  
  247957aebed186788f541f1081a92569
- SHA1
  
  6a3ed72744426179880e8d37c2a52a2b51162e8d
- SHA256
  
  0ca1af6e27855ec06e2f1dcb2c691e759026ea9831b1c27dc3e0de8c0d024c9a
- SHA512
  
  a1914ab3d80597905ffcfbe4b2d5747120d704dca186c6e94ffb3cf39f6a190e55fd0cf5a94f2295773e66392fadfce283290065365560f753de348905de62b0
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/0VXaqvd:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXp
Score

9^/10

ransomware
- Renames multiple (3442) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy