renamer | c5d51bbb8f6e3b9b5a62bbfb09eee52e8b69a81cb234655420974f8744fbddcc | Triage

Submit
Reports

Overview

overview

Static

static

3

terrorist1.exe

windows10-2004-x64

Resubmissions

27-12-2024 13:06

241227-qb7j6swjdr 10

26-08-2024 21:33

240826-1d7m3axgqm 3

Sharing

General

Target

terrorist1.exe
Size

1.1MB
Sample

241227-qb7j6swjdr
MD5

0d48c1470957ad85c27eef51fa8d5440
SHA1

87b27498f8d2422abbdd7ca4847f73021a665bb4
SHA256

c5d51bbb8f6e3b9b5a62bbfb09eee52e8b69a81cb234655420974f8744fbddcc
SHA512

7b9abd19278f7364e5b969b62f4c85d88db7db3bf7db68b99bf52fe809c31c2ded923e81d63e32d8671bbc93c7ca46481c3e85754f72982e1e069a6bb7bd3a8a
SSDEEP

24576:Yc1JAmNGSdLSPiOd7rN9qZdbT1luw1PrrE3CYKxT3O2UUH0Ce:xJAfIArXqXT171PvuSFL0Ce

Score

10^/10

renamer discovery worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

terrorist1.exe

Resource

win10v2004-20241007-en

renamer discovery worm

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  terrorist1.exe
- Size
  
  1.1MB
- MD5
  
  0d48c1470957ad85c27eef51fa8d5440
- SHA1
  
  87b27498f8d2422abbdd7ca4847f73021a665bb4
- SHA256
  
  c5d51bbb8f6e3b9b5a62bbfb09eee52e8b69a81cb234655420974f8744fbddcc
- SHA512
  
  7b9abd19278f7364e5b969b62f4c85d88db7db3bf7db68b99bf52fe809c31c2ded923e81d63e32d8671bbc93c7ca46481c3e85754f72982e1e069a6bb7bd3a8a
- SSDEEP
  
  24576:Yc1JAmNGSdLSPiOd7rN9qZdbT1luw1PrrE3CYKxT3O2UUH0Ce:xJAfIArXqXT171PvuSFL0Ce
Score

10^/10

renamer discovery worm
- Detects Renamer worm.
  Renamer aka Grename is worm written in Delphi.
- Renamer family
  renamer
- Renamer, Grenam
  Renamer aka Grenam is a worm written in Delphi.
  worm renamer
- Drops startup file
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

renamerdiscoveryworm

© 2018-2024

Terms | Privacy