General
-
Target
8b0815da55a95761f5b2898673d7cf862967f328fcb5ea8d737f85dc31fd195f.exe
-
Size
824KB
-
Sample
241206-zwxp5sxmcw
-
MD5
1fa3ce521b84c28fc44fdf70ed8924f8
-
SHA1
89c065e16f9bb00bab0cdbb124ada009728ed8ef
-
SHA256
8b0815da55a95761f5b2898673d7cf862967f328fcb5ea8d737f85dc31fd195f
-
SHA512
0ab30f622d7b0749a961e6cd21d6c0a2a91e399292c912b544535903268693e9c5cef4e576d7d7bec957538e08152c6128363a1373e8c04ab2986a486292a916
-
SSDEEP
12288:AwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEj888888888888W8888888R:wNzCtUpQ9WWPBSSRMTEpXNv
Malware Config
Targets
-
-
Target
8b0815da55a95761f5b2898673d7cf862967f328fcb5ea8d737f85dc31fd195f.exe
-
Size
824KB
-
MD5
1fa3ce521b84c28fc44fdf70ed8924f8
-
SHA1
89c065e16f9bb00bab0cdbb124ada009728ed8ef
-
SHA256
8b0815da55a95761f5b2898673d7cf862967f328fcb5ea8d737f85dc31fd195f
-
SHA512
0ab30f622d7b0749a961e6cd21d6c0a2a91e399292c912b544535903268693e9c5cef4e576d7d7bec957538e08152c6128363a1373e8c04ab2986a486292a916
-
SSDEEP
12288:AwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEj888888888888W8888888R:wNzCtUpQ9WWPBSSRMTEpXNv
Score10/10-
Detects Renamer worm.
Renamer aka Grename is worm written in Delphi.
-
Renamer family
-
Renamer, Grenam
Renamer aka Grenam is a worm written in Delphi.
-
Drops startup file
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-