Overview

overview

9

Static

static

3

cee0c1e7ab...84.exe

windows7-x64

9

cee0c1e7ab...84.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cee0c1e7ab992d37a111443cf19547a704b39e747a72f07657d36107cbff8c84

  • Size

    192KB

  • Sample

    240701-dek45axekq

  • MD5

    0e69b23ae7026757731f19e99aad0b4b

  • SHA1

    829f8388dba55b08a8f5f5f3db7a2f211e82e3e9

  • SHA256

    cee0c1e7ab992d37a111443cf19547a704b39e747a72f07657d36107cbff8c84

  • SHA512

    6ea3fa145870d80107c2c04b10087f7e35122c32fa095f0f3dcd9c51e961cc1c200daafe386f5d6afc8cb35029ae55fad10972752b1a6a9781b98d8db67d2552

  • SSDEEP

    6144:PqFF2Ie+eF1S/tUS/t4J4qFF2Ie+eF1S/tUS/t4JX:iFF2vFF25

Score
9/10
ransomware

Malware Config

Targets

    • Target

      cee0c1e7ab992d37a111443cf19547a704b39e747a72f07657d36107cbff8c84

    • Size

      192KB

    • MD5

      0e69b23ae7026757731f19e99aad0b4b

    • SHA1

      829f8388dba55b08a8f5f5f3db7a2f211e82e3e9

    • SHA256

      cee0c1e7ab992d37a111443cf19547a704b39e747a72f07657d36107cbff8c84

    • SHA512

      6ea3fa145870d80107c2c04b10087f7e35122c32fa095f0f3dcd9c51e961cc1c200daafe386f5d6afc8cb35029ae55fad10972752b1a6a9781b98d8db67d2552

    • SSDEEP

      6144:PqFF2Ie+eF1S/tUS/t4J4qFF2Ie+eF1S/tUS/t4JX:iFF2vFF25

    Score
    9/10
    ransomware

    • Renames multiple (144) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks