Overview

overview

9

Static

static

3

9550fab359...d3.exe

windows7-x64

9

9550fab359...d3.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9550fab3592a9d0d3df0fbb29476556f21d29bbdfbd7c9cd945d11fd9d1d31d3

  • Size

    98KB

  • Sample

    240727-bat55ayhnb

  • MD5

    d0d046593e1d8413496f89d06624fbc3

  • SHA1

    b6f17706fd7d724951404c6e5582c97c3f149bd1

  • SHA256

    9550fab3592a9d0d3df0fbb29476556f21d29bbdfbd7c9cd945d11fd9d1d31d3

  • SHA512

    07d55237b5d061fc1e12bee4b80afd178f6d69b6738491572123065870eab483cb30565d30e6680efbd6f76de2eaade0f49b221d32c837841465ca71af4eb30d

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fN:RqKvb0CYJ973e+eKZOf7fN

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      9550fab3592a9d0d3df0fbb29476556f21d29bbdfbd7c9cd945d11fd9d1d31d3

    • Size

      98KB

    • MD5

      d0d046593e1d8413496f89d06624fbc3

    • SHA1

      b6f17706fd7d724951404c6e5582c97c3f149bd1

    • SHA256

      9550fab3592a9d0d3df0fbb29476556f21d29bbdfbd7c9cd945d11fd9d1d31d3

    • SHA512

      07d55237b5d061fc1e12bee4b80afd178f6d69b6738491572123065870eab483cb30565d30e6680efbd6f76de2eaade0f49b221d32c837841465ca71af4eb30d

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fN:RqKvb0CYJ973e+eKZOf7fN

    Score
    9/10
    discoveryransomware

    • Renames multiple (1606) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks