Overview

overview

9

Static

static

3

8e2ae71441...24.exe

windows7-x64

9

8e2ae71441...24.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8e2ae71441c368323abcd44f14c04a3f48f368c44a0c129de2ac15431b980c24

  • Size

    78KB

  • Sample

    240809-3ygngszdmd

  • MD5

    eecc3480c2c8940191c0ac9aa1748975

  • SHA1

    462e4bc6abda23a88bcc4bcce9c4b560cbfacaac

  • SHA256

    8e2ae71441c368323abcd44f14c04a3f48f368c44a0c129de2ac15431b980c24

  • SHA512

    261a0e570590ba194551742f28233755d7088edec0bcbf6a9fb2b72596a6946f261f5cf8185c60f58bf758318964cad7ee9e34516d139c9709ed700884fba3b9

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpn7ZppApBULcfpHLcfpi:6pWpBwchcjpWpBwchc8

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      8e2ae71441c368323abcd44f14c04a3f48f368c44a0c129de2ac15431b980c24

    • Size

      78KB

    • MD5

      eecc3480c2c8940191c0ac9aa1748975

    • SHA1

      462e4bc6abda23a88bcc4bcce9c4b560cbfacaac

    • SHA256

      8e2ae71441c368323abcd44f14c04a3f48f368c44a0c129de2ac15431b980c24

    • SHA512

      261a0e570590ba194551742f28233755d7088edec0bcbf6a9fb2b72596a6946f261f5cf8185c60f58bf758318964cad7ee9e34516d139c9709ed700884fba3b9

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpn7ZppApBULcfpHLcfpi:6pWpBwchcjpWpBwchc8

    Score
    9/10
    discoveryransomware

    • Renames multiple (4877) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks