Behavioral task
behavioral1
Sample
5ab834f599c6ad35fcd0a168d93c52c399c6de7d1c20f33e25cb1fdb25aec9c6.exe
Resource
win7v20201028
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
5ab834f599c6ad35fcd0a168d93c52c399c6de7d1c20f33e25cb1fdb25aec9c6.exe
Resource
win10v20201028
0 signatures
0 seconds
General
-
Target
4699462964641792.zip
-
Size
31KB
-
MD5
f86bc4d1c11a104ec3c305ce5ea8278f
-
SHA1
d9b1a57189493920d4735b4d03dbac475b8c1915
-
SHA256
dea93a0cf6e55dcfd1a4b9c10324b0b4edea974cc60878296601e6dc9f16c166
-
SHA512
97b5234052e06b134eaa86ea5e534b1cd16edb69b03bd0909236c87edc044050274102c4165d9c7c6fc591c252bccbb32c251a670b68cb4c03ee0e3d71768c11
Malware Config
Signatures
-
Nefilim Ransomware Executable 1 IoCs
File contains patterns typical of Nefilim samples.
resource yara_rule static1/unpack001/5ab834f599c6ad35fcd0a168d93c52c399c6de7d1c20f33e25cb1fdb25aec9c6 nefilim_ransomware -
Nefilim family
-
resource yara_rule static1/unpack001/5ab834f599c6ad35fcd0a168d93c52c399c6de7d1c20f33e25cb1fdb25aec9c6 upx
Files
-
4699462964641792.zip.zip
Password: infected
-
5ab834f599c6ad35fcd0a168d93c52c399c6de7d1c20f33e25cb1fdb25aec9c6.exe windows x86