6e39b87d6f99b589be1e8ded74d55c8479aed7ebd5db00c210e366aada217b37 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

13b4bbf084...0N.exe

windows7-x64

9

13b4bbf084...0N.exe

windows10-2004-x64

9

Sharing

General

Target

13b4bbf084aa724f2f637f60e36e4130N.exe
Size

194KB
Sample

240721-1c1hcsxhjk
MD5

13b4bbf084aa724f2f637f60e36e4130
SHA1

8fcc2414e53986dfe02e6cdf6031993d62d77b28
SHA256

6e39b87d6f99b589be1e8ded74d55c8479aed7ebd5db00c210e366aada217b37
SHA512

986cf52491280d68d59eba5cfefb46544ecccc2c1667449f6f4d14542f695715f1a29af99d77adc3eab1e3c78f80f566757fdce139f964e7fd0709404b595466
SSDEEP

6144:RqKvb0CYJ973e+eKZOf7fbqKvb0CYJ973e+eKZOf7fl:vvbxYX7Z2vbxYX7Z6

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

13b4bbf084aa724f2f637f60e36e4130N.exe

Resource

win7-20240704-en

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

13b4bbf084aa724f2f637f60e36e4130N.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  13b4bbf084aa724f2f637f60e36e4130N.exe
- Size
  
  194KB
- MD5
  
  13b4bbf084aa724f2f637f60e36e4130
- SHA1
  
  8fcc2414e53986dfe02e6cdf6031993d62d77b28
- SHA256
  
  6e39b87d6f99b589be1e8ded74d55c8479aed7ebd5db00c210e366aada217b37
- SHA512
  
  986cf52491280d68d59eba5cfefb46544ecccc2c1667449f6f4d14542f695715f1a29af99d77adc3eab1e3c78f80f566757fdce139f964e7fd0709404b595466
- SSDEEP
  
  6144:RqKvb0CYJ973e+eKZOf7fbqKvb0CYJ973e+eKZOf7fl:vvbxYX7Z2vbxYX7Z6
Score

9^/10

ransomware
- Renames multiple (3934) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy