Overview

overview

10

Static

static

10

2024-09-22...de.exe

windows7-x64

9

2024-09-22...de.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-22_fd68012fa7c5c63d393aa44b039cd193_darkside

  • Size

    147KB

  • Sample

    240922-bkkz7svcra

  • MD5

    fd68012fa7c5c63d393aa44b039cd193

  • SHA1

    62084644f50562eefc223c0b505f77ba1d953e5e

  • SHA256

    cf6305a67821101a2613f779dfb463a776b2353f0fe81ceeaf1c5c70039e5d7b

  • SHA512

    98d00d758303473040a509ffecf938a976702707fa1fb8ef98f8b2df4ef9ce7ef2ff714a11f1284bfff31a9edb62144f797cddff24394faded5e156fbe475077

  • SSDEEP

    1536:CzICS4AAwczUUf8y8gvMH+1zGSNAojMP95D1xDYM3UFLzhoDGBxkFQBoBml6ziNS:BqJogYkcSNm9V7DDENzyqxkbml6BbBT

Score
10/10
lockbitdiscoveryransomwarespywarestealer

Malware Config

Targets

    • Target

      2024-09-22_fd68012fa7c5c63d393aa44b039cd193_darkside

    • Size

      147KB

    • MD5

      fd68012fa7c5c63d393aa44b039cd193

    • SHA1

      62084644f50562eefc223c0b505f77ba1d953e5e

    • SHA256

      cf6305a67821101a2613f779dfb463a776b2353f0fe81ceeaf1c5c70039e5d7b

    • SHA512

      98d00d758303473040a509ffecf938a976702707fa1fb8ef98f8b2df4ef9ce7ef2ff714a11f1284bfff31a9edb62144f797cddff24394faded5e156fbe475077

    • SSDEEP

      1536:CzICS4AAwczUUf8y8gvMH+1zGSNAojMP95D1xDYM3UFLzhoDGBxkFQBoBml6ziNS:BqJogYkcSNm9V7DDENzyqxkbml6BbBT

    Score
    9/10
    discoveryransomwarespywarestealer

    • Renames multiple (346) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks