Overview

overview

9

Static

static

3

a08ddcea2d...a5.exe

windows7-x64

9

a08ddcea2d...a5.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a08ddcea2d351754259b24264785097bb0769c952f946c36fd085ca658e345a5

  • Size

    165KB

  • Sample

    240629-a75sfswhng

  • MD5

    2efbb89acd5c6ff6712720aa09f1dfb2

  • SHA1

    07ac166a42e4a33552fedbc03e397d1992879b2e

  • SHA256

    a08ddcea2d351754259b24264785097bb0769c952f946c36fd085ca658e345a5

  • SHA512

    773400b19784621c6e01899f144816f47f19f183b6c48998267b6a41d515e2d9f5f35f7ee6abce276b4d45bc4986750441a0ccf0b8af1d41fd5290a81fde6a81

  • SSDEEP

    3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBf:PqFF2Ie+eFtqFF2Ie+eF+

Score
9/10
ransomware

Malware Config

Targets

    • Target

      a08ddcea2d351754259b24264785097bb0769c952f946c36fd085ca658e345a5

    • Size

      165KB

    • MD5

      2efbb89acd5c6ff6712720aa09f1dfb2

    • SHA1

      07ac166a42e4a33552fedbc03e397d1992879b2e

    • SHA256

      a08ddcea2d351754259b24264785097bb0769c952f946c36fd085ca658e345a5

    • SHA512

      773400b19784621c6e01899f144816f47f19f183b6c48998267b6a41d515e2d9f5f35f7ee6abce276b4d45bc4986750441a0ccf0b8af1d41fd5290a81fde6a81

    • SSDEEP

      3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBf:PqFF2Ie+eFtqFF2Ie+eF+

    Score
    9/10
    ransomware

    • Renames multiple (3876) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks