renamer | de93de0c39f0a6c10707a3560ad8e98d4c7513d4451031d05183002b50ae25e4 | Triage

Submit
Reports

Overview

overview

Static

static

3

Payment In...df.exe

windows10-2004-x64

Resubmissions

27-12-2024 12:08

241227-pa23mavmdz 10

03-12-2024 13:59

241203-radfdatnbr 3

Sharing

General

Target

Payment Info______________pdf.exe
Size

1.5MB
Sample

241227-pa23mavmdz
MD5

a69247a5bf856961397a936413521d4c
SHA1

5b22d99e1fdd6a52b2541cc497d12055fccc6900
SHA256

de93de0c39f0a6c10707a3560ad8e98d4c7513d4451031d05183002b50ae25e4
SHA512

2686d6178bd10e510dd05b6ccc008383ec021cd2cee632c56b1a7e47beb267e3655a64e6ccc00331dbebee6a209ff64d0a4f7fff16bd8addcd69530b4e5d6896
SSDEEP

24576:9cCT67wHqWis4l+jIACFr5hqjiLDpSJDN93pqb6W8cU4gLQz5A:uCpn8t74iA3qb6W8cU45i

Score

10^/10

renamer discovery worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Payment Info______________pdf.exe

Resource

win10v2004-20241007-en

renamer discovery worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  Payment Info______________pdf.exe
- Size
  
  1.5MB
- MD5
  
  a69247a5bf856961397a936413521d4c
- SHA1
  
  5b22d99e1fdd6a52b2541cc497d12055fccc6900
- SHA256
  
  de93de0c39f0a6c10707a3560ad8e98d4c7513d4451031d05183002b50ae25e4
- SHA512
  
  2686d6178bd10e510dd05b6ccc008383ec021cd2cee632c56b1a7e47beb267e3655a64e6ccc00331dbebee6a209ff64d0a4f7fff16bd8addcd69530b4e5d6896
- SSDEEP
  
  24576:9cCT67wHqWis4l+jIACFr5hqjiLDpSJDN93pqb6W8cU4gLQz5A:uCpn8t74iA3qb6W8cU45i
Score

10^/10

renamer discovery worm
- Detects Renamer worm.
  Renamer aka Grename is worm written in Delphi.
- Renamer family
  renamer
- Renamer, Grenam
  Renamer aka Grenam is a worm written in Delphi.
  worm renamer
- Drops startup file
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

renamerdiscoveryworm

© 2018-2024

Terms | Privacy