Overview

overview

9

Static

static

3

92b4c83b30...1f.exe

windows7-x64

9

92b4c83b30...1f.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    92b4c83b30eaf59bb96c0ee2e385d0ea69445d3b847c00d36c63b3c4de03001f

  • Size

    177KB

  • Sample

    240611-a3bzksxgkk

  • MD5

    b2b78afdfa5dafe067c8ea8e925a5a94

  • SHA1

    93f87166d1ba15ab786c18f3e3c00c4635516055

  • SHA256

    92b4c83b30eaf59bb96c0ee2e385d0ea69445d3b847c00d36c63b3c4de03001f

  • SHA512

    55f8eb519f2e47a8d931475bc97d159cf33da3576192b2e89e4a3a8649f4f3aaea358db827dcfea72b2d42fd1ba4b9b7bf02d3b99f53b0e2c792b8ca458ae8a9

  • SSDEEP

    3072:6e7WpP9oVLQthbYY9oVLQthbUvVe7WpP9oVLQthbYY9oVLQthbUvM:RqAYqAE

Score
9/10
ransomware

Malware Config

Targets

    • Target

      92b4c83b30eaf59bb96c0ee2e385d0ea69445d3b847c00d36c63b3c4de03001f

    • Size

      177KB

    • MD5

      b2b78afdfa5dafe067c8ea8e925a5a94

    • SHA1

      93f87166d1ba15ab786c18f3e3c00c4635516055

    • SHA256

      92b4c83b30eaf59bb96c0ee2e385d0ea69445d3b847c00d36c63b3c4de03001f

    • SHA512

      55f8eb519f2e47a8d931475bc97d159cf33da3576192b2e89e4a3a8649f4f3aaea358db827dcfea72b2d42fd1ba4b9b7bf02d3b99f53b0e2c792b8ca458ae8a9

    • SSDEEP

      3072:6e7WpP9oVLQthbYY9oVLQthbUvVe7WpP9oVLQthbYY9oVLQthbUvM:RqAYqAE

    Score
    9/10
    ransomware

    • Renames multiple (4077) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks