Overview

overview

9

Static

static

3

160778725d...b4.exe

windows7-x64

9

160778725d...b4.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    160778725df0d0fdbd248115ca5fe96b8062c18912e2756cccbb8bdb8f947ab4

  • Size

    64KB

  • Sample

    240609-3w4p8shd28

  • MD5

    9102b3a820fbbc655f88ecf3bb1ab22b

  • SHA1

    e901a4742e5e9bb65543a15c3c5277daef661bd1

  • SHA256

    160778725df0d0fdbd248115ca5fe96b8062c18912e2756cccbb8bdb8f947ab4

  • SHA512

    3ab16a3ad501906d65037730b385924f2b33c8cbd0a285b8b0251b8066b5c5f90b4c809d1c0e9a64e7b0002ab0b919fe5521b365d882bfe6d771a5761e1813ce

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvuNBNQFmBt7Br5xjL9AgA71FbhvuNBNQFa:W7BlpppARFbhHF27BlpppARFbhHFa

Score
9/10
ransomware

Malware Config

Targets

    • Target

      160778725df0d0fdbd248115ca5fe96b8062c18912e2756cccbb8bdb8f947ab4

    • Size

      64KB

    • MD5

      9102b3a820fbbc655f88ecf3bb1ab22b

    • SHA1

      e901a4742e5e9bb65543a15c3c5277daef661bd1

    • SHA256

      160778725df0d0fdbd248115ca5fe96b8062c18912e2756cccbb8bdb8f947ab4

    • SHA512

      3ab16a3ad501906d65037730b385924f2b33c8cbd0a285b8b0251b8066b5c5f90b4c809d1c0e9a64e7b0002ab0b919fe5521b365d882bfe6d771a5761e1813ce

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvuNBNQFmBt7Br5xjL9AgA71FbhvuNBNQFa:W7BlpppARFbhHF27BlpppARFbhHFa

    Score
    9/10
    ransomware

    • Renames multiple (4239) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks