Overview

overview

9

Static

static

3

e7450d1f0e...0N.exe

windows7-x64

9

e7450d1f0e...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    e7450d1f0ecb71f649e3611edcddb2c0N

  • Size

    72KB

  • Sample

    240826-htbapasfkl

  • MD5

    e7450d1f0ecb71f649e3611edcddb2c0

  • SHA1

    f2c9b9f0b5a68ccb5455c6a69f128acf9ae80b72

  • SHA256

    d1e1d36fdf915d5b110925a7fa03eebcc1c1775659841fa259d08fcd2459eb63

  • SHA512

    a21cbcc2bf767c0366753884c25380a54dbd1d105a77f758eff1ea7784e8b6bd3bdb122666a0ba9be057f1af52b6094525f652c5de6a38244cacc242a0c55514

  • SSDEEP

    1536:W7ZppApBULcfpHLcfp0n7ZppApBULcfpHLcfp5:6pWpBwchcalpWpBwchcf

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      e7450d1f0ecb71f649e3611edcddb2c0N

    • Size

      72KB

    • MD5

      e7450d1f0ecb71f649e3611edcddb2c0

    • SHA1

      f2c9b9f0b5a68ccb5455c6a69f128acf9ae80b72

    • SHA256

      d1e1d36fdf915d5b110925a7fa03eebcc1c1775659841fa259d08fcd2459eb63

    • SHA512

      a21cbcc2bf767c0366753884c25380a54dbd1d105a77f758eff1ea7784e8b6bd3bdb122666a0ba9be057f1af52b6094525f652c5de6a38244cacc242a0c55514

    • SSDEEP

      1536:W7ZppApBULcfpHLcfp0n7ZppApBULcfpHLcfp5:6pWpBwchcalpWpBwchcf

    Score
    9/10
    discoveryransomware

    • Renames multiple (3465) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks