ransomhub | 8b41f26e3063ae451f14111c69d28929e0ead8fbe4f11a40257761766553e657 | Triage

Submit
Reports

Overview

overview

Static

static

rundll3.exe

windows7-x64

3

rundll3.exe

windows10-2004-x64

1

Sharing

General

Target

240907-vd8mgatfqr_pw_infected.zip
Size

2.4MB
Sample

241001-zxd97athjg
MD5

19686df02e548da3e143c3873ac823fc
SHA1

0fa91a9de24c52d77d8dd47e4f8d80d690217952
SHA256

8b41f26e3063ae451f14111c69d28929e0ead8fbe4f11a40257761766553e657
SHA512

79c15cb87f036dae15617bdd5452ff00b04639cb6fcc43cba3d6816cefdf8fd0a0fea9e6a0675c7213d25190fc574a5a51dcaed877c2ad611cdfd4e6bf6a8c72
SSDEEP

49152:MrLbijd0NP+tF6dDQaG+gleGpBpBgYApYVNUbNQQTatfeTbjwvA1PLs:MrKjuIoenleGp7+cVNaLetm/jwvA1PI

Score

10^/10

ransomhub discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

rundll3.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

600 seconds

Behavioral task

behavioral2

Sample

rundll3.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

600 seconds

Malware Config

Targets

- Target
  
  rundll3.exe
- Size
  
  5.6MB
- MD5
  
  be8e765b8622989c5e4aa6414c2b030c
- SHA1
  
  b6cb7f1ffcceff8fbe572594ffc6aa515420e0a0
- SHA256
  
  6fdb160c3b7a5813f187afd606ef2e24cfde0e66e3a0663ce65cd1372fdc32ab
- SHA512
  
  e0522301c8d2c156fe6157d7d1ca3a305078ed35bd3a2cf1131bea2a97246eaa8e00751cb4ad9c63e26d97149bdf5898da6d443d8c224735c81589462bd571ad
- SSDEEP
  
  49152:YfPM6fbpCpuj2TCOHIiRO06E6M5UqdJtunHnVnzm5EatXXzihWGNggHL/rF2tZVb:GpRY2IEfm
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy