20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

20b4cefaaa...20.exe

windows7-x64

9

20b4cefaaa...20.exe

windows10-2004-x64

9

Sharing

General

Target

20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20
Size

58KB
Sample

240531-x7jljsbc86
MD5

45870a2f839848087d70cba93f507b52
SHA1

ef8d04cee783229445c3904aa093ad3af8288b4d
SHA256

20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20
SHA512

1802f5f5c8606c1daa275efab11a31996ffb6479096033fff1c2d992643395667ad396efce7407d7d201ac93a00e1ec83cbf7ae0f5ca98149ad183ed6d69cb57
SSDEEP

768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nGrA:W7ZNLpApCZrt8PWGoPWGANdNh

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20
- Size
  
  58KB
- MD5
  
  45870a2f839848087d70cba93f507b52
- SHA1
  
  ef8d04cee783229445c3904aa093ad3af8288b4d
- SHA256
  
  20b4cefaaa5f7a75fe5f7f259a1114654e0d1bb100a49e3cb9039e2b81416c20
- SHA512
  
  1802f5f5c8606c1daa275efab11a31996ffb6479096033fff1c2d992643395667ad396efce7407d7d201ac93a00e1ec83cbf7ae0f5ca98149ad183ed6d69cb57
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nGrA:W7ZNLpApCZrt8PWGoPWGANdNh
Score

9^/10

ransomware
- Renames multiple (592) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy