Overview

overview

9

Static

static

3

3b9485e355...fa.exe

windows7-x64

9

3b9485e355...fa.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    3b9485e3558ecca1ebb3e6c7faa3241e77436b2254ba9cbcaccba19503d05efa

  • Size

    94KB

  • Sample

    240707-zv5dlazhqe

  • MD5

    e573b856697f2aec114c768924313587

  • SHA1

    e87949e9a394396eaf0362ec4275e24845e767f1

  • SHA256

    3b9485e3558ecca1ebb3e6c7faa3241e77436b2254ba9cbcaccba19503d05efa

  • SHA512

    db4231275bffdd3686336553a96d798400405e59a9d2ad21e4099fe729df103028666361cdb3847ae467155636487cf8fa22d76f8ae7c0ce65f53595c06d1e14

  • SSDEEP

    1536:/7ZQpAp9XxX1z0Mz0z7ZQpAp9XxX1z0Mz0a:9QWp9XxX1z0Mz0RQWp9XxX1z0Mz0a

Score
9/10
ransomware

Malware Config

Targets

    • Target

      3b9485e3558ecca1ebb3e6c7faa3241e77436b2254ba9cbcaccba19503d05efa

    • Size

      94KB

    • MD5

      e573b856697f2aec114c768924313587

    • SHA1

      e87949e9a394396eaf0362ec4275e24845e767f1

    • SHA256

      3b9485e3558ecca1ebb3e6c7faa3241e77436b2254ba9cbcaccba19503d05efa

    • SHA512

      db4231275bffdd3686336553a96d798400405e59a9d2ad21e4099fe729df103028666361cdb3847ae467155636487cf8fa22d76f8ae7c0ce65f53595c06d1e14

    • SSDEEP

      1536:/7ZQpAp9XxX1z0Mz0z7ZQpAp9XxX1z0Mz0a:9QWp9XxX1z0Mz0RQWp9XxX1z0Mz0a

    Score
    9/10
    ransomware

    • Renames multiple (4134) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks