Overview

overview

9

Static

static

3

1de2d154d1...0d.exe

windows7-x64

9

1de2d154d1...0d.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1de2d154d16f7098a02ad720ce0d3008b8cdbde8e2b379837e01fdf0c02f5c0d.exe

  • Size

    198KB

  • Sample

    240705-abml1axark

  • MD5

    00c99ab80a7fda261263344958dc1ab0

  • SHA1

    c3d22a8b1ff48d846970a4fcce5c6b8714d4e0e0

  • SHA256

    1de2d154d16f7098a02ad720ce0d3008b8cdbde8e2b379837e01fdf0c02f5c0d

  • SHA512

    2159a1e1c3059a17855a3e07d4688f26f082ee8649493c33dcde4c534fdddaa0009256b34547a8db7001b3d4163c9c3adf913471144e3d3111828db70715c92e

  • SSDEEP

    6144:RqKvb0CYJ973e+eKZOf7fzqKvb0CYJ973e+eKZOf7fP:vvbxYX7ZWvbxYX7Zw

Score
9/10
ransomware

Malware Config

Targets

    • Target

      1de2d154d16f7098a02ad720ce0d3008b8cdbde8e2b379837e01fdf0c02f5c0d.exe

    • Size

      198KB

    • MD5

      00c99ab80a7fda261263344958dc1ab0

    • SHA1

      c3d22a8b1ff48d846970a4fcce5c6b8714d4e0e0

    • SHA256

      1de2d154d16f7098a02ad720ce0d3008b8cdbde8e2b379837e01fdf0c02f5c0d

    • SHA512

      2159a1e1c3059a17855a3e07d4688f26f082ee8649493c33dcde4c534fdddaa0009256b34547a8db7001b3d4163c9c3adf913471144e3d3111828db70715c92e

    • SSDEEP

      6144:RqKvb0CYJ973e+eKZOf7fzqKvb0CYJ973e+eKZOf7fP:vvbxYX7ZWvbxYX7Zw

    Score
    9/10
    ransomware

    • Renames multiple (2914) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks