Overview

overview

9

Static

static

3

953db0be20...eb.exe

windows7-x64

9

953db0be20...eb.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    953db0be20e06ae75bf7030ecced2451e81b087ebbe66ea338ea53dec61a7ceb

  • Size

    72KB

  • Sample

    240727-bahgbsyhmb

  • MD5

    0a9028870e5057528b0f4f712edda3fe

  • SHA1

    9739c59921c81bc623a9028f17458c85c1dd095f

  • SHA256

    953db0be20e06ae75bf7030ecced2451e81b087ebbe66ea338ea53dec61a7ceb

  • SHA512

    91a1cb83bb139a348aa14c0f6245635f0da821ec87b87317a66e60bdeed390f79f1486319cc07d47681abbfc3f1fcae812edfe6224a74d798d47fe18aea5f926

  • SSDEEP

    768:/7BlpQpARFbhiWb3pQl4NOGMtibgXZ5OX/Ql4NOGMtibgXZ5OXg:/7ZQpAp/LNgGYJ5OngGYJ5OQ

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      953db0be20e06ae75bf7030ecced2451e81b087ebbe66ea338ea53dec61a7ceb

    • Size

      72KB

    • MD5

      0a9028870e5057528b0f4f712edda3fe

    • SHA1

      9739c59921c81bc623a9028f17458c85c1dd095f

    • SHA256

      953db0be20e06ae75bf7030ecced2451e81b087ebbe66ea338ea53dec61a7ceb

    • SHA512

      91a1cb83bb139a348aa14c0f6245635f0da821ec87b87317a66e60bdeed390f79f1486319cc07d47681abbfc3f1fcae812edfe6224a74d798d47fe18aea5f926

    • SSDEEP

      768:/7BlpQpARFbhiWb3pQl4NOGMtibgXZ5OX/Ql4NOGMtibgXZ5OXg:/7ZQpAp/LNgGYJ5OngGYJ5OQ

    Score
    9/10
    discoveryransomware

    • Renames multiple (2988) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks