Overview

overview

9

Static

static

3

Trojan.Win...ie.exe

windows7-x64

9

Trojan.Win...ie.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Trojan.Win32.Zombie.rfn-4d800505df05f4cd72d21a9cfc90d6fc6259b7b348c638dfb8a7266c82bec558N

  • Size

    88KB

  • Sample

    240919-gdwq1stcja

  • MD5

    61798e88e0f8120b112d44e91a5c5cc0

  • SHA1

    555647d55b2a87a846ff8ded96c9d8463c401895

  • SHA256

    4d800505df05f4cd72d21a9cfc90d6fc6259b7b348c638dfb8a7266c82bec558

  • SHA512

    6e75abc4ea6ac89fc8da550d2d37b6ebff9a07336818d6278b69f7338af5d45bfe45bfa8686c3fb64101097361b3450f5d5ac03976e904f5ecb6d189190b66d1

  • SSDEEP

    1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYgqeG:6e7WpMaxeb0CYJ97lEYNR73e+eGG1qeG

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      Trojan.Win32.Zombie.rfn-4d800505df05f4cd72d21a9cfc90d6fc6259b7b348c638dfb8a7266c82bec558N

    • Size

      88KB

    • MD5

      61798e88e0f8120b112d44e91a5c5cc0

    • SHA1

      555647d55b2a87a846ff8ded96c9d8463c401895

    • SHA256

      4d800505df05f4cd72d21a9cfc90d6fc6259b7b348c638dfb8a7266c82bec558

    • SHA512

      6e75abc4ea6ac89fc8da550d2d37b6ebff9a07336818d6278b69f7338af5d45bfe45bfa8686c3fb64101097361b3450f5d5ac03976e904f5ecb6d189190b66d1

    • SSDEEP

      1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYgqeG:6e7WpMaxeb0CYJ97lEYNR73e+eGG1qeG

    Score
    9/10
    discoveryransomware

    • Renames multiple (3150) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks