Overview

overview

10

Static

static

10

47c2ae089e...22.exe

windows7-x64

10

47c2ae089e...22.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    47c2ae089e7bd87be5f8333109432d827ebf99ba8054fa0e11684c4dbacbc222

  • Size

    824KB

  • Sample

    241125-1sbtyayjbz

  • MD5

    3dd46f4f8dffc2716a72511c20d40ea3

  • SHA1

    cc19dbbb8d349f93d0419d21c0866eda9c946d59

  • SHA256

    47c2ae089e7bd87be5f8333109432d827ebf99ba8054fa0e11684c4dbacbc222

  • SHA512

    45180ac86ab39d185d2176a990f9658efa9cc446e0cdd43850b3235590db04460d1dda9ac6b593d5727a19a79d23e833f40286acca0e40a280151823c8406dc4

  • SSDEEP

    12288:ZwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEj888888888888W8888888J:NNzCtUpQ9WWPBSSRMTEpXN3

Score
10/10
renamerdiscoveryworm

Malware Config

Targets

    • Target

      47c2ae089e7bd87be5f8333109432d827ebf99ba8054fa0e11684c4dbacbc222

    • Size

      824KB

    • MD5

      3dd46f4f8dffc2716a72511c20d40ea3

    • SHA1

      cc19dbbb8d349f93d0419d21c0866eda9c946d59

    • SHA256

      47c2ae089e7bd87be5f8333109432d827ebf99ba8054fa0e11684c4dbacbc222

    • SHA512

      45180ac86ab39d185d2176a990f9658efa9cc446e0cdd43850b3235590db04460d1dda9ac6b593d5727a19a79d23e833f40286acca0e40a280151823c8406dc4

    • SSDEEP

      12288:ZwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEj888888888888W8888888J:NNzCtUpQ9WWPBSSRMTEpXN3

    Score
    10/10
    renamerdiscoveryworm

    • Detects Renamer worm.

      Renamer aka Grename is worm written in Delphi.

    • Renamer family

      renamer

    • Renamer, Grenam

      Renamer aka Grenam is a worm written in Delphi.

      wormrenamer

    • Drops startup file

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks