General

  • Target

    8e3da3c858b81065027892fde89dbcbae0b14f2bf8cc974c603a26554fb3ff24

  • Size

    824KB

  • Sample

    241101-rqg4hasrhl

  • MD5

    64793664ce95f85dea89e0384678478e

  • SHA1

    2ed98bc157e8eee33fca1e522a7af94e51cf554d

  • SHA256

    8e3da3c858b81065027892fde89dbcbae0b14f2bf8cc974c603a26554fb3ff24

  • SHA512

    7dd93b22d4449af58cd9631bf29c35042da4f00756c8933cd6c416269bf5aaec5ef880692212858226b0e027d9f8c3423b9d0ebca76eda08c9a2e04b2a32b1ae

  • SSDEEP

    12288:wwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4AhozEn888888888888W8888888J:gNzCtUpQ9WWPBSSRMTEptNT

Score
10/10

Malware Config

Targets

    • Target

      8e3da3c858b81065027892fde89dbcbae0b14f2bf8cc974c603a26554fb3ff24

    • Size

      824KB

    • MD5

      64793664ce95f85dea89e0384678478e

    • SHA1

      2ed98bc157e8eee33fca1e522a7af94e51cf554d

    • SHA256

      8e3da3c858b81065027892fde89dbcbae0b14f2bf8cc974c603a26554fb3ff24

    • SHA512

      7dd93b22d4449af58cd9631bf29c35042da4f00756c8933cd6c416269bf5aaec5ef880692212858226b0e027d9f8c3423b9d0ebca76eda08c9a2e04b2a32b1ae

    • SSDEEP

      12288:wwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4AhozEn888888888888W8888888J:gNzCtUpQ9WWPBSSRMTEptNT

    Score
    10/10
    • Detects Renamer worm.

      Renamer aka Grename is worm written in Delphi.

    • Renamer family

    • Renamer, Grenam

      Renamer aka Grenam is a worm written in Delphi.

    • Drops startup file

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Enterprise v15

Tasks