Overview

overview

9

Static

static

3

479d094781...27.exe

windows7-x64

9

479d094781...27.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    479d0947816467d562bf6d24b295bf50512176a2d3d955b8f4d932aea2378227.zip

  • Size

    56KB

  • Sample

    240709-g7q3mazflq

  • MD5

    9d5c77e75df35702acd2350f9fafac7d

  • SHA1

    c1e7ebd4ac836e418923a2c50a2aa3425abffbc3

  • SHA256

    48af861dbb90de2fc9c5de5506124bb42382e84eac75eb606eaf0bfcda0896af

  • SHA512

    d0b5bf7077a722b5e81278df90b005b188b1f3f8ce577a8fe2293357325afab8e41568c39f37e8dfdacfe7059b63f58da1b52607faed900fe9a4a8a2b6d8a00a

  • SSDEEP

    1536:/aQ1vdlzqP2ahYT8uTk2rit7ESxVBn9zpny:/a+dlz02ahYlQ2mt7EQVJJ4

Score
9/10
ransomware

Malware Config

Targets

    • Target

      479d0947816467d562bf6d24b295bf50512176a2d3d955b8f4d932aea2378227.exe

    • Size

      81KB

    • MD5

      059ac4569026c1b74e541d98b6240574

    • SHA1

      2a9c036ed1f2a86bec63ead2f2d2e6412faf6ada

    • SHA256

      479d0947816467d562bf6d24b295bf50512176a2d3d955b8f4d932aea2378227

    • SHA512

      3f9e1af50f94f9e7dcc938939588294271f31b0eec36497a83a380fa03bfbee44ca51a5dc4d04f440d0787df5c8406639ab8644d617d3cdec0de1b06385b5d0d

    • SSDEEP

      1536:+eDgKdeWMHH5t1fzDhx6uEY5mZJtBtVa3hb7mS:rDHsHZt1LDeUyLVaE

    Score
    9/10
    ransomware

    • Renames multiple (7153) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks