Overview

overview

9

Static

static

3

0b2b3d89ed...df.exe

windows7-x64

9

0b2b3d89ed...df.exe

windows10-2004-x64

9

Resubmissions

22/07/2024, 18:36

240722-w9b4tasamm 9

22/07/2024, 18:33

240722-w7hhta1hmp 9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b2b3d89ed26cf0e269acc9936413ccb60dd0500b16f14e63c331baa86fcbfdf

  • Size

    50KB

  • Sample

    240722-w9b4tasamm

  • MD5

    2c0814216e1c2cfc364e186ed07a2cc8

  • SHA1

    1d61c2f8104883b91a2559513f1e2f327b1f1fe9

  • SHA256

    0b2b3d89ed26cf0e269acc9936413ccb60dd0500b16f14e63c331baa86fcbfdf

  • SHA512

    2a335e98d3db0b66bfad349e7691459779e1306ac2da491183f227f6c15fb73a780229d25413532f38018e6cad35a79fc6ac225a8dcdb578722de6fdca14fc5f

  • SSDEEP

    768:/7BlpQpARFbhIYJIJDYJIJPqAlJIqAlJVU6L5W5n:/7ZQpApze+eMU6VIn

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0b2b3d89ed26cf0e269acc9936413ccb60dd0500b16f14e63c331baa86fcbfdf

    • Size

      50KB

    • MD5

      2c0814216e1c2cfc364e186ed07a2cc8

    • SHA1

      1d61c2f8104883b91a2559513f1e2f327b1f1fe9

    • SHA256

      0b2b3d89ed26cf0e269acc9936413ccb60dd0500b16f14e63c331baa86fcbfdf

    • SHA512

      2a335e98d3db0b66bfad349e7691459779e1306ac2da491183f227f6c15fb73a780229d25413532f38018e6cad35a79fc6ac225a8dcdb578722de6fdca14fc5f

    • SSDEEP

      768:/7BlpQpARFbhIYJIJDYJIJPqAlJIqAlJVU6L5W5n:/7ZQpApze+eMU6VIn

    Score
    9/10
    ransomware

    • Renames multiple (8816) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks