a1dd87458c544ed2400da8203845ff6f74e038c45e7bbebcb41940772223eeef | Triage

Submit
Reports

Overview

overview

9

Static

static

3

b294ca7066...0N.exe

windows7-x64

9

b294ca7066...0N.exe

windows10-2004-x64

9

Sharing

General

Target

b294ca7066af5b57c8a0aee2b3e606e0N.exe
Size

68KB
Sample

240722-p4rhzsygmm
MD5

b294ca7066af5b57c8a0aee2b3e606e0
SHA1

fa64af52036defc4c01002e6872d6b72ff63ae84
SHA256

a1dd87458c544ed2400da8203845ff6f74e038c45e7bbebcb41940772223eeef
SHA512

674654cde7a0236058fa5d97c5e1d7949bb5d95d7f5620efbdcb9b32146083023306744fad3a35212881620f88cee251b3229b47e844ff10f8efe867728e3170
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FABs7Br5xjL8AgA71Fbhv/Fzzwzu:/7BlpQpARFbhf7BlpQpARFbhNIu

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b294ca7066af5b57c8a0aee2b3e606e0N.exe

Resource

win7-20240708-en

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

b294ca7066af5b57c8a0aee2b3e606e0N.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  b294ca7066af5b57c8a0aee2b3e606e0N.exe
- Size
  
  68KB
- MD5
  
  b294ca7066af5b57c8a0aee2b3e606e0
- SHA1
  
  fa64af52036defc4c01002e6872d6b72ff63ae84
- SHA256
  
  a1dd87458c544ed2400da8203845ff6f74e038c45e7bbebcb41940772223eeef
- SHA512
  
  674654cde7a0236058fa5d97c5e1d7949bb5d95d7f5620efbdcb9b32146083023306744fad3a35212881620f88cee251b3229b47e844ff10f8efe867728e3170
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FABs7Br5xjL8AgA71Fbhv/Fzzwzu:/7BlpQpARFbhf7BlpQpARFbhNIu
Score

9^/10

ransomware
- Renames multiple (3278) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy