Overview

overview

9

Static

static

3

dc6aab1de8...37.exe

windows7-x64

9

dc6aab1de8...37.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37

  • Size

    122KB

  • Sample

    240701-d4dfksvelc

  • MD5

    5a18a39b8c6afaff6e73ba47163ac63b

  • SHA1

    b233a0edc526bfe53cab9e77e60d0632ef4dae26

  • SHA256

    dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37

  • SHA512

    ba6f085322eab18e33a633d0be0bf5c351379b95eb5043a01f3cb2fc9895493902ae23aa8751574ab56aacd635f1b2476885b6fc2978f890fc9b5f16c07ed059

  • SSDEEP

    768:W7BlpppARFbhWJq5ovYcTEXBwzEXBw07BlpppARFbhWJq5ovYcTEXBwzEXBwOeb:W7ZppApF5ove7ZppApF5ovt

Score
9/10
ransomware

Malware Config

Targets

    • Target

      dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37

    • Size

      122KB

    • MD5

      5a18a39b8c6afaff6e73ba47163ac63b

    • SHA1

      b233a0edc526bfe53cab9e77e60d0632ef4dae26

    • SHA256

      dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37

    • SHA512

      ba6f085322eab18e33a633d0be0bf5c351379b95eb5043a01f3cb2fc9895493902ae23aa8751574ab56aacd635f1b2476885b6fc2978f890fc9b5f16c07ed059

    • SSDEEP

      768:W7BlpppARFbhWJq5ovYcTEXBwzEXBw07BlpppARFbhWJq5ovYcTEXBwzEXBwOeb:W7ZppApF5ove7ZppApF5ovt

    Score
    9/10
    ransomware

    • Renames multiple (86) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks