General
-
Target
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6
-
Size
500KB
-
Sample
210408-aykk2wda4e
-
MD5
768ba1196f9534928ad2f8ffa12bd7f7
-
SHA1
b435fedf7e40e3ef24dba050102d63e2d5aa2e1e
-
SHA256
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6
-
SHA512
17c8fcf034b6e9d41aace6486eaa1d550e77b305ca0c72804d9825d0bebccb1b2f639324bc5f0c75b565e26494edefa4219dc8f17db0162dbf402b9d5a6382a7
Static task
static1
Behavioral task
behavioral1
Sample
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6
-
Size
500KB
-
MD5
768ba1196f9534928ad2f8ffa12bd7f7
-
SHA1
b435fedf7e40e3ef24dba050102d63e2d5aa2e1e
-
SHA256
051fb654403340420102430f807ea41ab790666488d897dc5b0008e99fed47d6
-
SHA512
17c8fcf034b6e9d41aace6486eaa1d550e77b305ca0c72804d9825d0bebccb1b2f639324bc5f0c75b565e26494edefa4219dc8f17db0162dbf402b9d5a6382a7
Score10/10-
Mespinoza Ransomware
Also known as Pysa. Ransomware-as-a-servoce which first appeared in 2020.
-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Deletes itself
-