General

  • Target

    Free Clipware.exe

  • Size

    1.7MB

  • Sample

    241221-vt18bstpgx

  • MD5

    676e5a171e4837a33e2d42cc40a091ec

  • SHA1

    ff8f8a22e0a58769ebb10fb270f949534591c6b1

  • SHA256

    380f08af959f4182b5f2db14b4ae907a4b013e4bd8146744ea75413d61ad1030

  • SHA512

    25208c5b652f0645b65bb70b40a049553dbee12a67adce2f22f0dba7d6d561505d7a4a9395d9d31e5313dc78c81edf0bb7b39fbcb6aea558d9bb4cd0625f89d4

  • SSDEEP

    24576:D7vwe+8ljws5G8Nc9sOgSNMMFJAyAL+3Xw2PP6MReN/IAUqNOmNAFwa/k:DgqdG8Nc9sOxtJVw2nzA3s/

Score
10/10

Malware Config

Targets

    • Target

      Free Clipware.exe

    • Size

      1.7MB

    • MD5

      676e5a171e4837a33e2d42cc40a091ec

    • SHA1

      ff8f8a22e0a58769ebb10fb270f949534591c6b1

    • SHA256

      380f08af959f4182b5f2db14b4ae907a4b013e4bd8146744ea75413d61ad1030

    • SHA512

      25208c5b652f0645b65bb70b40a049553dbee12a67adce2f22f0dba7d6d561505d7a4a9395d9d31e5313dc78c81edf0bb7b39fbcb6aea558d9bb4cd0625f89d4

    • SSDEEP

      24576:D7vwe+8ljws5G8Nc9sOgSNMMFJAyAL+3Xw2PP6MReN/IAUqNOmNAFwa/k:DgqdG8Nc9sOxtJVw2nzA3s/

    Score
    10/10
    • Cerber

      Cerber is a widely used ransomware-as-a-service (RaaS), first seen in 2017.

    • Cerber family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks