d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

d3dc48c713...c0.exe

windows7-x64

9

d3dc48c713...c0.exe

windows10-2004-x64

9

Sharing

General

Target

d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0
Size

112KB
Sample

240701-dmr8eathrh
MD5

c4e82520323f9223b6a12c09a3f29213
SHA1

c20ed2dd193266def35d3f3cf4a63de1f1812353
SHA256

d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0
SHA512

9b91fb9b84d2dbd8a12fc217619d0e149bdae6bf7ec9cbb306061aeae30652b49bba10c4a15247a650b497c5291e409ca6eb239d91db8ee8688d738c0b5c04f4
SSDEEP

3072:9QWpze+eJfFpsJOfFpsJ5DPQWpze+eJfFpsJOfFpsJ5DaPxPX:Lpe+ewDRpe+ewDaPxPX

Score

9^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0.exe

Resource

win7-20240220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0
- Size
  
  112KB
- MD5
  
  c4e82520323f9223b6a12c09a3f29213
- SHA1
  
  c20ed2dd193266def35d3f3cf4a63de1f1812353
- SHA256
  
  d3dc48c713ffc3d99c3ff9b6855f4854f3e2ed1e9c54132ad91075762903f3c0
- SHA512
  
  9b91fb9b84d2dbd8a12fc217619d0e149bdae6bf7ec9cbb306061aeae30652b49bba10c4a15247a650b497c5291e409ca6eb239d91db8ee8688d738c0b5c04f4
- SSDEEP
  
  3072:9QWpze+eJfFpsJOfFpsJ5DPQWpze+eJfFpsJOfFpsJ5DaPxPX:Lpe+ewDRpe+ewDaPxPX
Score

9^/10

ransomware
- Renames multiple (1367) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy