fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

fcf21787fb...f1.exe

windows7-x64

9

fcf21787fb...f1.exe

windows10-2004-x64

9

Sharing

General

Target

fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1
Size

173KB
Sample

240723-frcdvszbrq
MD5

d3a237a14a32d16d65284d8b6cdb845a
SHA1

d16b94b45f6410a027a5a8963890de544158109d
SHA256

fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1
SHA512

4eda8bc30b8ea41e5f500834c0236c102c25a13327b76e800786b41301e4898f9795b8324fb57ca6f43359bc797e169f77356832b759f8279caac241d1e44f79
SSDEEP

1536:W7ZDpApYbWjIoPyPoLzV7c6Shd7ZDpApYbWjIoPyPoLzV7c6ShK:6DWpEDWpF

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1.exe

Resource

win7-20240708-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1
- Size
  
  173KB
- MD5
  
  d3a237a14a32d16d65284d8b6cdb845a
- SHA1
  
  d16b94b45f6410a027a5a8963890de544158109d
- SHA256
  
  fcf21787fb5761207fda7df8146d91142b7d729aebc682a227635732508619f1
- SHA512
  
  4eda8bc30b8ea41e5f500834c0236c102c25a13327b76e800786b41301e4898f9795b8324fb57ca6f43359bc797e169f77356832b759f8279caac241d1e44f79
- SSDEEP
  
  1536:W7ZDpApYbWjIoPyPoLzV7c6Shd7ZDpApYbWjIoPyPoLzV7c6ShK:6DWpEDWpF
Score

9^/10

ransomware
- Renames multiple (4548) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy