Overview

overview

9

Static

static

3

9acaada7eb...0N.exe

windows7-x64

9

9acaada7eb...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    9acaada7eb2d561f7cef1a129b529560N.exe

  • Size

    88KB

  • Sample

    240723-ljv4wsyfla

  • MD5

    9acaada7eb2d561f7cef1a129b529560

  • SHA1

    211a2edbacd82bcfd3c6729b2e9c5f871b90e931

  • SHA256

    5032bf47b9644475dd885d2c681f410b806e5e6a9280ff8bdf9f4e65a76527c0

  • SHA512

    e0c24922fbb5e5f43e525fd1a677608c43d7a929b2c4433f59ab61d78087ed1a56d93aec4022ec6a5cc9951ca6c9a33639b9782ed7b735c738f326a8705d954f

  • SSDEEP

    1536:W7ZhA7pApH1++PJHJX18EQ8EQ7ZhA7pApH1++PJHJX18EQ8E/:6e7WpXGme7WpXGp

Score
9/10
ransomware

Malware Config

Targets

    • Target

      9acaada7eb2d561f7cef1a129b529560N.exe

    • Size

      88KB

    • MD5

      9acaada7eb2d561f7cef1a129b529560

    • SHA1

      211a2edbacd82bcfd3c6729b2e9c5f871b90e931

    • SHA256

      5032bf47b9644475dd885d2c681f410b806e5e6a9280ff8bdf9f4e65a76527c0

    • SHA512

      e0c24922fbb5e5f43e525fd1a677608c43d7a929b2c4433f59ab61d78087ed1a56d93aec4022ec6a5cc9951ca6c9a33639b9782ed7b735c738f326a8705d954f

    • SSDEEP

      1536:W7ZhA7pApH1++PJHJX18EQ8EQ7ZhA7pApH1++PJHJX18EQ8E/:6e7WpXGme7WpXGp

    Score
    9/10
    ransomware

    • Renames multiple (4298) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks