demonware | 43eb1369808b406a2a0a2ebc17ad86da61f9c4749dbe2df467ffb99939b133a0 | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-03-27...om.exe

windows7-x64

7

2025-03-27...om.exe

windows10-2004-x64

Sharing

General

Target

2025-03-27_0dd22f3fee3c889393ff193c12caacfa_black-basta_cobalt-strike_satacom
Size

23.3MB
Sample

250327-bn1vtsxp17
MD5

0dd22f3fee3c889393ff193c12caacfa
SHA1

9f34b7d1486a1993204ee4eeabccda8ca3162c1e
SHA256

43eb1369808b406a2a0a2ebc17ad86da61f9c4749dbe2df467ffb99939b133a0
SHA512

83d6ca09ec051dee96413384f8b60b6cdb81a3c48deea2dc4b92f08ab5d00374dc2cf7e9fb2f6d1bde1f7db3c05d84951c6aff080af0d9aa021488a43da423a2
SSDEEP

393216:jUlCmhQGCEDo2WtYjUaNRDHvcrwhvr+bUn2KekLTP/WViHdZk6tN3ZWPTvE9Hhwq:YjtCEDVfjrRj0r6+bUno0dZk6tN3OUwq

Score

10^/10

demonware pyinstaller ransomware

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2025-03-27_0dd22f3fee3c889393ff193c12caacfa_black-basta_cobalt-strike_satacom.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

2025-03-27_0dd22f3fee3c889393ff193c12caacfa_black-basta_cobalt-strike_satacom.exe

Resource

win10v2004-20250314-en

demonware ransomware

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  2025-03-27_0dd22f3fee3c889393ff193c12caacfa_black-basta_cobalt-strike_satacom
- Size
  
  23.3MB
- MD5
  
  0dd22f3fee3c889393ff193c12caacfa
- SHA1
  
  9f34b7d1486a1993204ee4eeabccda8ca3162c1e
- SHA256
  
  43eb1369808b406a2a0a2ebc17ad86da61f9c4749dbe2df467ffb99939b133a0
- SHA512
  
  83d6ca09ec051dee96413384f8b60b6cdb81a3c48deea2dc4b92f08ab5d00374dc2cf7e9fb2f6d1bde1f7db3c05d84951c6aff080af0d9aa021488a43da423a2
- SSDEEP
  
  393216:jUlCmhQGCEDo2WtYjUaNRDHvcrwhvr+bUn2KekLTP/WViHdZk6tN3ZWPTvE9Hhwq:YjtCEDVfjrRj0r6+bUno0dZk6tN3OUwq
Score

10^/10

demonware ransomware
- DemonWare
  Ransomware first seen in mid-2020.
  ransomware demonware
- Demonware family
  demonware
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

demonwareransomware

© 2018-2025

Terms | Privacy