8c278b732a5ab1bd699cfa7b4fcdd1868f686779a9ff66d43b6834baac3547df | Triage

Submit
Reports

Overview

overview

5

Static

static

3

订单信息.pdf_.exe

windows7-x64

5

订单信息.pdf_.exe

windows10-2004-x64

5

Sharing

General

Target

订单信息.pdf_.exe
Size

6.7MB
Sample

240919-g84p4svgpr
MD5

95decb42f6e1e72bcd71a2965f789217
SHA1

a0e338d3492618486b872b7967e79572611de6da
SHA256

8c278b732a5ab1bd699cfa7b4fcdd1868f686779a9ff66d43b6834baac3547df
SHA512

8d33d0aaf8acb0d0aefd4ad723f674945638ab6e11c1f41f1e748f6d9120e23d16d99856204228f8cd012b7d812a9da58a28fc1d03254ecf33bb211dc2c7c749
SSDEEP

98304:Z3i51vCbt/lQKBErje9G7J7GdiuJ67nDezL:pBNQV/sSuIDezL

Score

5^/10

discovery ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

订单信息.pdf_.exe

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

订单信息.pdf_.exe

Resource

win10v2004-20240802-en

discovery ransomware

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  订单信息.pdf_.exe
- Size
  
  6.7MB
- MD5
  
  95decb42f6e1e72bcd71a2965f789217
- SHA1
  
  a0e338d3492618486b872b7967e79572611de6da
- SHA256
  
  8c278b732a5ab1bd699cfa7b4fcdd1868f686779a9ff66d43b6834baac3547df
- SHA512
  
  8d33d0aaf8acb0d0aefd4ad723f674945638ab6e11c1f41f1e748f6d9120e23d16d99856204228f8cd012b7d812a9da58a28fc1d03254ecf33bb211dc2c7c749
- SSDEEP
  
  98304:Z3i51vCbt/lQKBErje9G7J7GdiuJ67nDezL:pBNQV/sSuIDezL
Score

5^/10

ransomware discovery
- Drops file in System32 directory
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2

discoveryransomware

© 2018-2025

Terms | Privacy