General

  • Target

    04574154e715fc163b4c46aa84c80090N

  • Size

    824KB

  • Sample

    240912-s45x6asbkq

  • MD5

    04574154e715fc163b4c46aa84c80090

  • SHA1

    8cc7260452098de0b797cf97cf2bae3b2cf457bc

  • SHA256

    48fc8d094bff07ff27822d54950cea70b2611fdc66014f62023dea36ceef4535

  • SHA512

    006e4652c0681adebe1dd4e8bf60f695f7e35d6bca6b8deb3e0018f8fa24a7cac3c7d76c86d3dc5289edb0029e04ef1d34aa57c277ab72f71f18fbf7ba42a8ef

  • SSDEEP

    12288:5wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEY888888888888W8888888J:tNzCtUpQ9WWPBSSRMTEpXNy

Score
10/10

Malware Config

Targets

    • Target

      04574154e715fc163b4c46aa84c80090N

    • Size

      824KB

    • MD5

      04574154e715fc163b4c46aa84c80090

    • SHA1

      8cc7260452098de0b797cf97cf2bae3b2cf457bc

    • SHA256

      48fc8d094bff07ff27822d54950cea70b2611fdc66014f62023dea36ceef4535

    • SHA512

      006e4652c0681adebe1dd4e8bf60f695f7e35d6bca6b8deb3e0018f8fa24a7cac3c7d76c86d3dc5289edb0029e04ef1d34aa57c277ab72f71f18fbf7ba42a8ef

    • SSDEEP

      12288:5wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEY888888888888W8888888J:tNzCtUpQ9WWPBSSRMTEpXNy

    Score
    10/10
    • Detects Renamer worm.

      Renamer aka Grename is worm written in Delphi.

    • Renamer, Grenam

      Renamer aka Grenam is a worm written in Delphi.

    • Drops startup file

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Enterprise v15

Tasks