d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

d9d6a1b095...28.exe

windows7-x64

9

d9d6a1b095...28.exe

windows10-2004-x64

9

Sharing

General

Target

d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628
Size

127KB
Sample

240526-d8sq3aec87
MD5

5e988b1b46385bf5db116c2ad53cb6c6
SHA1

f9ab2c5059e443dd5b2804a4afc7eb5d811c4f7a
SHA256

d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628
SHA512

0f298b2de531193792692c91f3e1decfffe768846d545fee6f4799da61f210239a0ecb3b70a7d60835b9828525af78e6208b484868f9b24851836e2151c1f3ff
SSDEEP

3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzE:RqlIyFESWu0SWuGSwxn

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628.exe

Resource

win7-20240419-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628
- Size
  
  127KB
- MD5
  
  5e988b1b46385bf5db116c2ad53cb6c6
- SHA1
  
  f9ab2c5059e443dd5b2804a4afc7eb5d811c4f7a
- SHA256
  
  d9d6a1b0959a8a8bbab0d8fc59b1639b12b82d37a316bd8588005cb63d5b9628
- SHA512
  
  0f298b2de531193792692c91f3e1decfffe768846d545fee6f4799da61f210239a0ecb3b70a7d60835b9828525af78e6208b484868f9b24851836e2151c1f3ff
- SSDEEP
  
  3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzE:RqlIyFESWu0SWuGSwxn
Score

9^/10

ransomware
- Renames multiple (3452) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy