Overview

overview

9

Static

static

3

5a2fc2beee...ac.exe

windows7-x64

9

5a2fc2beee...ac.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a2fc2beeef5ce4cee296b71cd8fff3d04514dbc915d7316891f5494e06885ac

  • Size

    165KB

  • Sample

    240531-1zc1ksfa6v

  • MD5

    4de7628411efbcf5e77b813d365d56f8

  • SHA1

    eed5a611957c7153c4470f0c0627852b06abc5f0

  • SHA256

    5a2fc2beeef5ce4cee296b71cd8fff3d04514dbc915d7316891f5494e06885ac

  • SHA512

    a9d329004b5e9cde40631fdc4d220d588607a1fe4991c620f03c46f729e51df3fc4ce910dbd195169f803f6265c8563c0e68029bd69d3e0c36db0bf11f258289

  • SSDEEP

    1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOM2kJOMIsKsc696xZXse7ZhA7pApvOsOKjC0d:6e7WpXYvndbsCe7WpXYvndbsL

Score
9/10
ransomware

Malware Config

Targets

    • Target

      5a2fc2beeef5ce4cee296b71cd8fff3d04514dbc915d7316891f5494e06885ac

    • Size

      165KB

    • MD5

      4de7628411efbcf5e77b813d365d56f8

    • SHA1

      eed5a611957c7153c4470f0c0627852b06abc5f0

    • SHA256

      5a2fc2beeef5ce4cee296b71cd8fff3d04514dbc915d7316891f5494e06885ac

    • SHA512

      a9d329004b5e9cde40631fdc4d220d588607a1fe4991c620f03c46f729e51df3fc4ce910dbd195169f803f6265c8563c0e68029bd69d3e0c36db0bf11f258289

    • SSDEEP

      1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOM2kJOMIsKsc696xZXse7ZhA7pApvOsOKjC0d:6e7WpXYvndbsCe7WpXYvndbsL

    Score
    9/10
    ransomware

    • Renames multiple (4465) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks