b439e08e94d38ed475b12c15be37b8ca1f78562139df5c5731a17874744e0b96 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

17fecc8134...0N.exe

windows7-x64

9

17fecc8134...0N.exe

windows10-2004-x64

9

Sharing

General

Target

17fecc8134dd1e21303b7c52f2414db0N.exe
Size

84KB
Sample

240709-ax6l1azbqb
MD5

17fecc8134dd1e21303b7c52f2414db0
SHA1

2fd2a27e569f4d2b1e76f920677ffb02489486d1
SHA256

b439e08e94d38ed475b12c15be37b8ca1f78562139df5c5731a17874744e0b96
SHA512

f42072c50bc712793571430b2beb56c68090e73c9e5cfe895cdef0d3d5b2bec5b95f67b1ad3f32982ee214279e4f59ceb3c7903e4a56b8229b7783e5b0903808
SSDEEP

1536:W7ZppApBULcfpHLcfpp191l7ZppApBULcfpHLcfpp191f3+lG3+lz:6pWpBwchchpWpBwchc5OMO5

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17fecc8134dd1e21303b7c52f2414db0N.exe

Resource

win7-20240708-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

17fecc8134dd1e21303b7c52f2414db0N.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  17fecc8134dd1e21303b7c52f2414db0N.exe
- Size
  
  84KB
- MD5
  
  17fecc8134dd1e21303b7c52f2414db0
- SHA1
  
  2fd2a27e569f4d2b1e76f920677ffb02489486d1
- SHA256
  
  b439e08e94d38ed475b12c15be37b8ca1f78562139df5c5731a17874744e0b96
- SHA512
  
  f42072c50bc712793571430b2beb56c68090e73c9e5cfe895cdef0d3d5b2bec5b95f67b1ad3f32982ee214279e4f59ceb3c7903e4a56b8229b7783e5b0903808
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpp191l7ZppApBULcfpHLcfpp191f3+lG3+lz:6pWpBwchchpWpBwchc5OMO5
Score

9^/10

ransomware
- Renames multiple (4792) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy