General

  • Target

    0ac88de21a64d739a8a68babc464a5291b1486ddea28708561be7bf42b7e819bN

  • Size

    824KB

  • Sample

    241110-cdwnsswmht

  • MD5

    2220b290a338d102646106d15b18e1c0

  • SHA1

    abc520b0c1d55a483f414a35fe753b5eb549bb04

  • SHA256

    0ac88de21a64d739a8a68babc464a5291b1486ddea28708561be7bf42b7e819b

  • SHA512

    f1e1a249fc0cb552a43bbf450503553357f24ba1c93aa8d65f0bc5b3ecf7ee51716f7c0cd4979a788da1252588c3a0ee180ed78217947991b26e064ea6896bec

  • SSDEEP

    12288:cwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozE7888888888888W8888888J:cNzCtUpQ9WWPBSSRMTEpXNv

Score
10/10

Malware Config

Targets

    • Target

      0ac88de21a64d739a8a68babc464a5291b1486ddea28708561be7bf42b7e819bN

    • Size

      824KB

    • MD5

      2220b290a338d102646106d15b18e1c0

    • SHA1

      abc520b0c1d55a483f414a35fe753b5eb549bb04

    • SHA256

      0ac88de21a64d739a8a68babc464a5291b1486ddea28708561be7bf42b7e819b

    • SHA512

      f1e1a249fc0cb552a43bbf450503553357f24ba1c93aa8d65f0bc5b3ecf7ee51716f7c0cd4979a788da1252588c3a0ee180ed78217947991b26e064ea6896bec

    • SSDEEP

      12288:cwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozE7888888888888W8888888J:cNzCtUpQ9WWPBSSRMTEpXNv

    Score
    10/10
    • Detects Renamer worm.

      Renamer aka Grename is worm written in Delphi.

    • Renamer family

    • Renamer, Grenam

      Renamer aka Grenam is a worm written in Delphi.

    • Drops startup file

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Enterprise v15

Tasks