d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

d3a5c99af2...17.exe

windows7-x64

9

d3a5c99af2...17.exe

windows10-2004-x64

9

Sharing

General

Target

d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17
Size

101KB
Sample

240701-dmbknaxfrp
MD5

906323713974944c172689ecaa4ff6ee
SHA1

bbd1dfb037a20ded71850eb0f191754fe0c6bbab
SHA256

d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17
SHA512

f1d37d7d7760328b7dc2e281a8662d02999404014f2adb9510ce32012d0155d3c35940ef06ca3bd04843601e7e4f9924e04368f4977e4a7e074955e4a9118260
SSDEEP

1536:p7ZhA7dAp1++PJHJXA/OsIZfzc3/Q8Q8/8RYdTmXadjUSbcDemTP6yKze+yKzeG:Te76WQSoskRYd6W2tKzWKzr

Score

9^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17
- Size
  
  101KB
- MD5
  
  906323713974944c172689ecaa4ff6ee
- SHA1
  
  bbd1dfb037a20ded71850eb0f191754fe0c6bbab
- SHA256
  
  d3a5c99af279c807da64ea1f4c3ed121e4009ad3c2cd634af3f88aca130cac17
- SHA512
  
  f1d37d7d7760328b7dc2e281a8662d02999404014f2adb9510ce32012d0155d3c35940ef06ca3bd04843601e7e4f9924e04368f4977e4a7e074955e4a9118260
- SSDEEP
  
  1536:p7ZhA7dAp1++PJHJXA/OsIZfzc3/Q8Q8/8RYdTmXadjUSbcDemTP6yKze+yKzeG:Te76WQSoskRYd6W2tKzWKzr
Score

9^/10

ransomware
- Renames multiple (1732) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy