Overview

overview

9

Static

static

3

156025bd1b...00.exe

windows7-x64

9

156025bd1b...00.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    156025bd1b43d963955f4f38a4c72d82692a82fd3a1d8a3ac7673563d94d4300

  • Size

    50KB

  • Sample

    240919-xcap6atgld

  • MD5

    4e2b6c7cdc7905d26748c7f2b447e069

  • SHA1

    b0745f331262c347c373ebbf880de38545b02c17

  • SHA256

    156025bd1b43d963955f4f38a4c72d82692a82fd3a1d8a3ac7673563d94d4300

  • SHA512

    6f38afa56ae170fa492066204e3c4da9d50fc1e7ee7e2cb4ad46eca583b1fa6b36b9b3d24837d2e2a9d987b8484a51e9cda9862392b7da43559685af0d98038b

  • SSDEEP

    768:W7BlpppARFbhjbhg42LcfpR42LcfpRo+fOiJbfo+fOiJbCk8t8QP2Hbww9ySqbw4:W7ZppApBULcfpHLcfp/ZeLP27wHw4

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      156025bd1b43d963955f4f38a4c72d82692a82fd3a1d8a3ac7673563d94d4300

    • Size

      50KB

    • MD5

      4e2b6c7cdc7905d26748c7f2b447e069

    • SHA1

      b0745f331262c347c373ebbf880de38545b02c17

    • SHA256

      156025bd1b43d963955f4f38a4c72d82692a82fd3a1d8a3ac7673563d94d4300

    • SHA512

      6f38afa56ae170fa492066204e3c4da9d50fc1e7ee7e2cb4ad46eca583b1fa6b36b9b3d24837d2e2a9d987b8484a51e9cda9862392b7da43559685af0d98038b

    • SSDEEP

      768:W7BlpppARFbhjbhg42LcfpR42LcfpRo+fOiJbfo+fOiJbCk8t8QP2Hbww9ySqbw4:W7ZppApBULcfpHLcfp/ZeLP27wHw4

    Score
    9/10
    discoveryransomware

    • Renames multiple (3561) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks