Overview

overview

9

Static

static

3

a4b255a2e7...07.exe

windows7-x64

9

a4b255a2e7...07.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a4b255a2e76aea3e69fd8b94a4f9525ceb90594f793728d35663d1d26739b607

  • Size

    187KB

  • Sample

    240705-bhck2sydmm

  • MD5

    fb388be4418d34011e53ae25435305b6

  • SHA1

    70dcce5a848e6e2be36e84eecb8119b648561abc

  • SHA256

    a4b255a2e76aea3e69fd8b94a4f9525ceb90594f793728d35663d1d26739b607

  • SHA512

    d19905459468614b68d2fad20e6a29d1a2d889ac597a4fec35f2cc9f7f21347b7faf5c8896ea72e386b09d026cf94008dafef6599f92cc229f2c2bdae172597e

  • SSDEEP

    3072:69WpQE0zUMTcTSWEmOTcTSWEmc9WpQE0zUMTcTSWEmOTcTSWEm7:nIZeIZS

Score
9/10
ransomware

Malware Config

Targets

    • Target

      a4b255a2e76aea3e69fd8b94a4f9525ceb90594f793728d35663d1d26739b607

    • Size

      187KB

    • MD5

      fb388be4418d34011e53ae25435305b6

    • SHA1

      70dcce5a848e6e2be36e84eecb8119b648561abc

    • SHA256

      a4b255a2e76aea3e69fd8b94a4f9525ceb90594f793728d35663d1d26739b607

    • SHA512

      d19905459468614b68d2fad20e6a29d1a2d889ac597a4fec35f2cc9f7f21347b7faf5c8896ea72e386b09d026cf94008dafef6599f92cc229f2c2bdae172597e

    • SSDEEP

      3072:69WpQE0zUMTcTSWEmOTcTSWEmc9WpQE0zUMTcTSWEmOTcTSWEm7:nIZeIZS

    Score
    9/10
    ransomware

    • Renames multiple (3572) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks