cerber | 22db2181de7da036ace5cf84dc22422ddb7ed9a267938b3c5484e530a18987e4 | Triage

Submit
Reports

Overview

overview

Static

static

3

Perm Loader.exe

windows10-2004-x64

Sharing

General

Target

Perm Loader.exe
Size

1.7MB
Sample

241107-27pvsaspdl
MD5

367ece01c154d28964a61d30ce83e90c
SHA1

d6747c9c2661e40ee186c3a30df24b2546c3720b
SHA256

22db2181de7da036ace5cf84dc22422ddb7ed9a267938b3c5484e530a18987e4
SHA512

a54c64562eb0bdb4114437fbf70fcf8b4ab6cfb7e1bfef9380db3197951aae51bfd5ea6372fa89ce04ceaca25f52d75ae8d33ef10b24ee8a6311383961d2389b
SSDEEP

24576:H7vwe+8ljws5G8Nc9sOgSNMMFJAyAL+3Xw2PP6MReN/IAUqNOmNAFwa/k:HgqdG8Nc9sOxtJVw2nzA3s/

Score

10^/10

cerber discovery ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Perm Loader.exe

Resource

win10v2004-20241007-en

cerber discovery ransomware

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  Perm Loader.exe
- Size
  
  1.7MB
- MD5
  
  367ece01c154d28964a61d30ce83e90c
- SHA1
  
  d6747c9c2661e40ee186c3a30df24b2546c3720b
- SHA256
  
  22db2181de7da036ace5cf84dc22422ddb7ed9a267938b3c5484e530a18987e4
- SHA512
  
  a54c64562eb0bdb4114437fbf70fcf8b4ab6cfb7e1bfef9380db3197951aae51bfd5ea6372fa89ce04ceaca25f52d75ae8d33ef10b24ee8a6311383961d2389b
- SSDEEP
  
  24576:H7vwe+8ljws5G8Nc9sOgSNMMFJAyAL+3Xw2PP6MReN/IAUqNOmNAFwa/k:HgqdG8Nc9sOxtJVw2nzA3s/
Score

10^/10

cerber discovery ransomware
- Cerber
  Cerber is a widely used ransomware-as-a-service (RaaS), first seen in 2017.
  ransomware cerber
- Cerber family
  cerber
- Executes dropped EXE
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

cerberdiscoveryransomware

© 2018-2025

Terms | Privacy