Overview

overview

9

Static

static

3

f7ec66c23e...eb.exe

windows7-x64

9

f7ec66c23e...eb.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    f7ec66c23e539348f43f754a919a1056feb0b9c061ec5b061905796168c93deb

  • Size

    125KB

  • Sample

    240723-fhcy2aycrb

  • MD5

    6de8bddd510a7f70dd668570edaa4ec3

  • SHA1

    b2262b01824f6b32d2df30ac6fef186082cce53c

  • SHA256

    f7ec66c23e539348f43f754a919a1056feb0b9c061ec5b061905796168c93deb

  • SHA512

    a00caaddfd0ab06c0fe786fafc2a9fc9263ecb4de1236a36f7e141f65bc69c6a738d82c11bc7ada251fdf9ec7dcea33789068c8db58fd6363619dea22c51308f

  • SSDEEP

    1536:W7ZNLpApCZuvIYXxJ75sNpJJ75sNpyPIXxX37ZNLpApCZuvIYXxJ75sNpJJ75sNQ:6NLWpCZLYFXxX1NLWpCZLYFXxXc

Score
9/10
ransomware

Malware Config

Targets

    • Target

      f7ec66c23e539348f43f754a919a1056feb0b9c061ec5b061905796168c93deb

    • Size

      125KB

    • MD5

      6de8bddd510a7f70dd668570edaa4ec3

    • SHA1

      b2262b01824f6b32d2df30ac6fef186082cce53c

    • SHA256

      f7ec66c23e539348f43f754a919a1056feb0b9c061ec5b061905796168c93deb

    • SHA512

      a00caaddfd0ab06c0fe786fafc2a9fc9263ecb4de1236a36f7e141f65bc69c6a738d82c11bc7ada251fdf9ec7dcea33789068c8db58fd6363619dea22c51308f

    • SSDEEP

      1536:W7ZNLpApCZuvIYXxJ75sNpJJ75sNpyPIXxX37ZNLpApCZuvIYXxJ75sNpJJ75sNQ:6NLWpCZLYFXxX1NLWpCZLYFXxXc

    Score
    9/10
    ransomware

    • Renames multiple (3507) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks