Overview

overview

9

Static

static

3

78d1668755...1c.exe

windows7-x64

9

78d1668755...1c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78d166875586b6f787fdd3f67289648fe9df0f109554bbbadb0b3fbf737b3d1c

  • Size

    82KB

  • Sample

    240722-27p6jsvbkj

  • MD5

    1471930b19ccdde274dda03d8c344717

  • SHA1

    42a790d2edc9c62d002635144d1d29f69491da63

  • SHA256

    78d166875586b6f787fdd3f67289648fe9df0f109554bbbadb0b3fbf737b3d1c

  • SHA512

    1418c103d263a4f1c52c86d0e3eced4e8d93ec63b84c6469bc81ef06244d30588769bcc438094da062c7e9855410ced2266b94b55d699b4c920ce537e023fce1

  • SSDEEP

    768:W7BlpppARFbhHFoqAJwBqAJwRJofJoI7BlpppARFbhHFoqAJwBqAJwRJofJo8:W7ZppApaJofJoI7ZppApaJofJo8

Score
9/10
ransomware

Malware Config

Targets

    • Target

      78d166875586b6f787fdd3f67289648fe9df0f109554bbbadb0b3fbf737b3d1c

    • Size

      82KB

    • MD5

      1471930b19ccdde274dda03d8c344717

    • SHA1

      42a790d2edc9c62d002635144d1d29f69491da63

    • SHA256

      78d166875586b6f787fdd3f67289648fe9df0f109554bbbadb0b3fbf737b3d1c

    • SHA512

      1418c103d263a4f1c52c86d0e3eced4e8d93ec63b84c6469bc81ef06244d30588769bcc438094da062c7e9855410ced2266b94b55d699b4c920ce537e023fce1

    • SSDEEP

      768:W7BlpppARFbhHFoqAJwBqAJwRJofJoI7BlpppARFbhHFoqAJwBqAJwRJofJo8:W7ZppApaJofJoI7ZppApaJofJo8

    Score
    9/10
    ransomware

    • Renames multiple (608) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks