Overview

overview

9

Static

static

3

78656e7601...41.exe

windows7-x64

9

78656e7601...41.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78656e7601f3d6076d7c467faa3910d11d0f6e1663317350659943e0b02e0a41

  • Size

    99KB

  • Sample

    240602-3t56aabf21

  • MD5

    cfc2b761234e3586487911068ff72ae7

  • SHA1

    580c8a59aeea2e587ab5b5aa209c4608e71316df

  • SHA256

    78656e7601f3d6076d7c467faa3910d11d0f6e1663317350659943e0b02e0a41

  • SHA512

    42dbc96a04ea6d5707b82ea063306c88f30b007a4d559c7bbe70bd829f227c7a68ae69551fb4879b3d96fedfbf512da5d570e62c863dccc06a376dc3e241a294

  • SSDEEP

    1536:W7ZNLpApCZrt8PWGoPWGpbB7ZNLpApCZrt8PWGoPWGpbi:6NLWpCZhbrNLWpCZhbi

Score
9/10
ransomware

Malware Config

Targets

    • Target

      78656e7601f3d6076d7c467faa3910d11d0f6e1663317350659943e0b02e0a41

    • Size

      99KB

    • MD5

      cfc2b761234e3586487911068ff72ae7

    • SHA1

      580c8a59aeea2e587ab5b5aa209c4608e71316df

    • SHA256

      78656e7601f3d6076d7c467faa3910d11d0f6e1663317350659943e0b02e0a41

    • SHA512

      42dbc96a04ea6d5707b82ea063306c88f30b007a4d559c7bbe70bd829f227c7a68ae69551fb4879b3d96fedfbf512da5d570e62c863dccc06a376dc3e241a294

    • SSDEEP

      1536:W7ZNLpApCZrt8PWGoPWGpbB7ZNLpApCZrt8PWGoPWGpbi:6NLWpCZhbrNLWpCZhbi

    Score
    9/10
    ransomware

    • Renames multiple (4157) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks