Overview

overview

9

Static

static

3

81a34ca35f...0N.exe

windows7-x64

9

81a34ca35f...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    81a34ca35fea2f7e03ea8a997fc479c0N.exe

  • Size

    91KB

  • Sample

    240819-t5vdgsydkn

  • MD5

    81a34ca35fea2f7e03ea8a997fc479c0

  • SHA1

    ab8c098eff47df1cd039bef732f22eb65fc3154b

  • SHA256

    c6ea1cf243e422dc4c46a0b03359cbb155496f8d6205f5dc53ccdcdbab12c60e

  • SHA512

    c3b9c858a771087a3377874e313565e2695fd2ae90e3dd074c7bbc6f4c653878546c1da6015ec3798962babaebc246632c83f1e9aa50f9641cd9f88d72341fb5

  • SSDEEP

    768:/7BlpQpARFbhNIiJwsJwwnZY7BlpQpARFbhNIiJwsJwwnZm:/7ZQpAplJwsJwwnu7ZQpAplJwsJwwn0

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      81a34ca35fea2f7e03ea8a997fc479c0N.exe

    • Size

      91KB

    • MD5

      81a34ca35fea2f7e03ea8a997fc479c0

    • SHA1

      ab8c098eff47df1cd039bef732f22eb65fc3154b

    • SHA256

      c6ea1cf243e422dc4c46a0b03359cbb155496f8d6205f5dc53ccdcdbab12c60e

    • SHA512

      c3b9c858a771087a3377874e313565e2695fd2ae90e3dd074c7bbc6f4c653878546c1da6015ec3798962babaebc246632c83f1e9aa50f9641cd9f88d72341fb5

    • SSDEEP

      768:/7BlpQpARFbhNIiJwsJwwnZY7BlpQpARFbhNIiJwsJwwnZm:/7ZQpAplJwsJwwnu7ZQpAplJwsJwwn0

    Score
    9/10
    discoveryransomware

    • Renames multiple (4184) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks