Overview

overview

9

Static

static

3

2b90b62d63...5b.exe

windows7-x64

9

2b90b62d63...5b.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2b90b62d63922267cbffa74af6126b4bc427610871c063c3d3c6042627d4e45b

  • Size

    194KB

  • Sample

    240707-yy2lfazdjg

  • MD5

    f6b94f8b3f52fb002adee22cfcc73dd5

  • SHA1

    a8c5b421fadd8f621642d22236edf9b45edd5caf

  • SHA256

    2b90b62d63922267cbffa74af6126b4bc427610871c063c3d3c6042627d4e45b

  • SHA512

    1a01febc3373c9e895dfb24fbb3e0e13454bed239249c6189f8d3ed79d88f12cd90b4b9f1e831c49eb0c7edbce8eeb87ea0076d1912cfed6502333decbd7223f

  • SSDEEP

    6144:RqKvb0CYJ973e+eKZ/B8qKvb0CYJ973e+eKZ/BS:vvbxYX7Z/BgvbxYX7Z/BS

Score
9/10
ransomware

Malware Config

Targets

    • Target

      2b90b62d63922267cbffa74af6126b4bc427610871c063c3d3c6042627d4e45b

    • Size

      194KB

    • MD5

      f6b94f8b3f52fb002adee22cfcc73dd5

    • SHA1

      a8c5b421fadd8f621642d22236edf9b45edd5caf

    • SHA256

      2b90b62d63922267cbffa74af6126b4bc427610871c063c3d3c6042627d4e45b

    • SHA512

      1a01febc3373c9e895dfb24fbb3e0e13454bed239249c6189f8d3ed79d88f12cd90b4b9f1e831c49eb0c7edbce8eeb87ea0076d1912cfed6502333decbd7223f

    • SSDEEP

      6144:RqKvb0CYJ973e+eKZ/B8qKvb0CYJ973e+eKZ/BS:vvbxYX7Z/BgvbxYX7Z/BS

    Score
    9/10
    ransomware

    • Renames multiple (526) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks