Overview

overview

10

Static

static

10

cb8bcd68f6...2N.exe

windows7-x64

10

cb8bcd68f6...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cb8bcd68f60e0fe5fafbc3c710bf26a5931f47e57b1f61cd1c6d019580b23052N

  • Size

    824KB

  • Sample

    241110-frc1dszlay

  • MD5

    bd401809b80b1cf22078f808e618f390

  • SHA1

    781b42e2d5720df8512ade0f7bdf81014cb0f1af

  • SHA256

    cb8bcd68f60e0fe5fafbc3c710bf26a5931f47e57b1f61cd1c6d019580b23052

  • SHA512

    dd88f484a64674d436e1b16efb9311b787d97af26abe024845fd028f35cb92cb4a870b18c53db2bf6e960ffeacddc85f78ad045957bee0247aa0d8d30ce0d0fc

  • SSDEEP

    12288:AwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEa888888888888W8888888J:wNzCtUpQ9WWPBSSRMTEpXNg

Score
10/10
renamerdiscoveryworm

Malware Config

Targets

    • Target

      cb8bcd68f60e0fe5fafbc3c710bf26a5931f47e57b1f61cd1c6d019580b23052N

    • Size

      824KB

    • MD5

      bd401809b80b1cf22078f808e618f390

    • SHA1

      781b42e2d5720df8512ade0f7bdf81014cb0f1af

    • SHA256

      cb8bcd68f60e0fe5fafbc3c710bf26a5931f47e57b1f61cd1c6d019580b23052

    • SHA512

      dd88f484a64674d436e1b16efb9311b787d97af26abe024845fd028f35cb92cb4a870b18c53db2bf6e960ffeacddc85f78ad045957bee0247aa0d8d30ce0d0fc

    • SSDEEP

      12288:AwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEa888888888888W8888888J:wNzCtUpQ9WWPBSSRMTEpXNg

    Score
    10/10
    renamerdiscoveryworm

    • Detects Renamer worm.

      Renamer aka Grename is worm written in Delphi.

    • Renamer family

      renamer

    • Renamer, Grenam

      Renamer aka Grenam is a worm written in Delphi.

      wormrenamer

    • Drops startup file

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks