renamer | 65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76 | Triage

Submit
Reports

Overview

overview

Static

static

3

65c419001b...76.exe

windows10-2004-x64

Resubmissions

27-12-2024 13:01

241227-p9kbvswjbr 10

27-08-2024 16:31

240827-t1cymszfnb 3

Sharing

General

Target

65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76.exe
Size

1.1MB
Sample

241227-p9kbvswjbr
MD5

ba409992c2a64a0d6ab15eb04dfe6c1a
SHA1

92450c2d4226ce1c2dd63700a59a72d0659981e5
SHA256

65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76
SHA512

e86b565faa6090b045bed8151851b74040eeef1bcacec1127090743a65725115b0b78bf98f3703bbb5239e4fd0a0ba03e7156871dec406009f6fb5f7ce5a5171
SSDEEP

24576:Lc1JAmNGSdLSPiOd7rN9qZdbT1luw1PrrE3CYKxT3O2UUH0nNDS5lSye:mJAfIArXqXT171PvuSFL0nNDS5lSye

Score

10^/10

renamer discovery worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76.exe

Resource

win10v2004-20241007-en

renamer discovery worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76.exe
- Size
  
  1.1MB
- MD5
  
  ba409992c2a64a0d6ab15eb04dfe6c1a
- SHA1
  
  92450c2d4226ce1c2dd63700a59a72d0659981e5
- SHA256
  
  65c419001b20801963c9c36a5ecb4fe4529c99270ebfccb93d4ef20c4f725b76
- SHA512
  
  e86b565faa6090b045bed8151851b74040eeef1bcacec1127090743a65725115b0b78bf98f3703bbb5239e4fd0a0ba03e7156871dec406009f6fb5f7ce5a5171
- SSDEEP
  
  24576:Lc1JAmNGSdLSPiOd7rN9qZdbT1luw1PrrE3CYKxT3O2UUH0nNDS5lSye:mJAfIArXqXT171PvuSFL0nNDS5lSye
Score

10^/10

renamer discovery worm
- Detects Renamer worm.
  Renamer aka Grename is worm written in Delphi.
- Renamer family
  renamer
- Renamer, Grenam
  Renamer aka Grenam is a worm written in Delphi.
  worm renamer
- Drops startup file
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

renamerdiscoveryworm

© 2018-2024

Terms | Privacy