Overview

overview

9

Static

static

3

729bf3688e...58.exe

windows7-x64

9

729bf3688e...58.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    729bf3688eb923eb555d1662207f88d18cd06ae85a70e1cf38879817d529c358

  • Size

    161KB

  • Sample

    240529-2z6hkaeb36

  • MD5

    56a23be1388f663e2d22faa6b6e76cb7

  • SHA1

    ea0f4b7ecfc74801a638f3bbcaae2a68147e137a

  • SHA256

    729bf3688eb923eb555d1662207f88d18cd06ae85a70e1cf38879817d529c358

  • SHA512

    e30cb6ccedb7f866adb993e126fa8a69984514b3c87259dd58ba3faffb1abd1f231418111e84fdc134e146654fe62d14c9aa455a6897f209269acb99d223ace4

  • SSDEEP

    1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKd7Z9pApQESOHepOHe8G+6E65dyGdq:69WpQE0z+9WpQE0z0

Score
9/10
ransomware

Malware Config

Targets

    • Target

      729bf3688eb923eb555d1662207f88d18cd06ae85a70e1cf38879817d529c358

    • Size

      161KB

    • MD5

      56a23be1388f663e2d22faa6b6e76cb7

    • SHA1

      ea0f4b7ecfc74801a638f3bbcaae2a68147e137a

    • SHA256

      729bf3688eb923eb555d1662207f88d18cd06ae85a70e1cf38879817d529c358

    • SHA512

      e30cb6ccedb7f866adb993e126fa8a69984514b3c87259dd58ba3faffb1abd1f231418111e84fdc134e146654fe62d14c9aa455a6897f209269acb99d223ace4

    • SSDEEP

      1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKd7Z9pApQESOHepOHe8G+6E65dyGdq:69WpQE0z+9WpQE0z0

    Score
    9/10
    ransomware

    • Renames multiple (3669) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks