Overview

overview

9

Static

static

3

44eb4ef5c6...0N.exe

windows7-x64

9

44eb4ef5c6...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44eb4ef5c6a04657a27d809c3511b4d0N.exe

  • Size

    100KB

  • Sample

    240820-dcbgxazfkh

  • MD5

    44eb4ef5c6a04657a27d809c3511b4d0

  • SHA1

    1ced61df726f3430a193e95de6a6682dce641c41

  • SHA256

    8a3eea2b74e0cfa3b5eec066762119fb314d2c0ee90052a46852dfc2ad5a836c

  • SHA512

    a120f8f6d0f2861a40a9d5a68d94d829328778f0f581b066c6cbe4ea3623326e217c3533d3dc65321494348eb33e38e8190806035332b996ce262ebe1a77e1a8

  • SSDEEP

    1536:W7Z2sspAp5YSfffyneKIKP7Z2sspAp5YSfffyneKIKF:62ssWpKneKIKN2ssWpKneKIKF

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      44eb4ef5c6a04657a27d809c3511b4d0N.exe

    • Size

      100KB

    • MD5

      44eb4ef5c6a04657a27d809c3511b4d0

    • SHA1

      1ced61df726f3430a193e95de6a6682dce641c41

    • SHA256

      8a3eea2b74e0cfa3b5eec066762119fb314d2c0ee90052a46852dfc2ad5a836c

    • SHA512

      a120f8f6d0f2861a40a9d5a68d94d829328778f0f581b066c6cbe4ea3623326e217c3533d3dc65321494348eb33e38e8190806035332b996ce262ebe1a77e1a8

    • SSDEEP

      1536:W7Z2sspAp5YSfffyneKIKP7Z2sspAp5YSfffyneKIKF:62ssWpKneKIKN2ssWpKneKIKF

    Score
    9/10
    discoveryransomware

    • Renames multiple (4286) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks