bee679ff9d47d39553b6a26dc874f17248f8b3c51426aefcda48ee5cde7ec4fb | Triage

Submit
Reports

Overview

overview

9

Static

static

3

42db7b7fcd...0N.exe

windows7-x64

9

42db7b7fcd...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

42db7b7fcddd5159bc3ebf72da855ec0N.exe
Size

174KB
Sample

240716-bmt1wsybrk
MD5

42db7b7fcddd5159bc3ebf72da855ec0
SHA1

336a1911a11319046c69e503bb72340e88d5d69b
SHA256

bee679ff9d47d39553b6a26dc874f17248f8b3c51426aefcda48ee5cde7ec4fb
SHA512

439b8e6656a4663ee31359274560e89d53a602d30844b380a472c5499994dc2ae38131bc21689cc5a1e6e0be3a1c86e8605fce8399259458cddf5fbdf79efdfc
SSDEEP

3072:9QWpze+eO888888888888888888888888888888888888888888888888888888r:Lpe+ekePpe+ekedRHR5

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

42db7b7fcddd5159bc3ebf72da855ec0N.exe

Resource

win7-20240708-en

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

42db7b7fcddd5159bc3ebf72da855ec0N.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  42db7b7fcddd5159bc3ebf72da855ec0N.exe
- Size
  
  174KB
- MD5
  
  42db7b7fcddd5159bc3ebf72da855ec0
- SHA1
  
  336a1911a11319046c69e503bb72340e88d5d69b
- SHA256
  
  bee679ff9d47d39553b6a26dc874f17248f8b3c51426aefcda48ee5cde7ec4fb
- SHA512
  
  439b8e6656a4663ee31359274560e89d53a602d30844b380a472c5499994dc2ae38131bc21689cc5a1e6e0be3a1c86e8605fce8399259458cddf5fbdf79efdfc
- SSDEEP
  
  3072:9QWpze+eO888888888888888888888888888888888888888888888888888888r:Lpe+ekePpe+ekedRHR5
Score

9^/10

ransomware
- Renames multiple (3188) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy