Overview

overview

9

Static

static

3

026a2725e7...0N.exe

windows7-x64

9

026a2725e7...0N.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    026a2725e77e8428f2e1023d76785400N.exe

  • Size

    158KB

  • Sample

    240903-x2zqksvbqm

  • MD5

    026a2725e77e8428f2e1023d76785400

  • SHA1

    e5343f52bf23ffd5928724b81c99f8bfd2a81577

  • SHA256

    ea2e4417b24628e4c27c915adaf9464614f16ee19e6c83769bb69e559966d613

  • SHA512

    c4e68259ee08128b6027d73dce639c0d4fb67c5134fa5fc6a8557715ea198d5080f5c59be1f9a3437eef9ae2ab30e6a3f71d976e63f7f32f9c16208f203d661b

  • SSDEEP

    1536:/7ZQpAp/6Y7oIpu2Y7ZQpAp/6Y7oIpu2W:9QWpQ2YQWpQ2W

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      026a2725e77e8428f2e1023d76785400N.exe

    • Size

      158KB

    • MD5

      026a2725e77e8428f2e1023d76785400

    • SHA1

      e5343f52bf23ffd5928724b81c99f8bfd2a81577

    • SHA256

      ea2e4417b24628e4c27c915adaf9464614f16ee19e6c83769bb69e559966d613

    • SHA512

      c4e68259ee08128b6027d73dce639c0d4fb67c5134fa5fc6a8557715ea198d5080f5c59be1f9a3437eef9ae2ab30e6a3f71d976e63f7f32f9c16208f203d661b

    • SSDEEP

      1536:/7ZQpAp/6Y7oIpu2Y7ZQpAp/6Y7oIpu2W:9QWpQ2YQWpQ2W

    Score
    9/10
    discoveryransomware

    • Renames multiple (4386) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks