General
-
Target
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132
-
Size
840KB
-
Sample
210409-xskmlwwxb6
-
MD5
6490aefbaf3e6a708269d771d8fd4136
-
SHA1
2ae6c5f0ec0faca746bf6ba3f5c7682a454de78c
-
SHA256
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132
-
SHA512
6ef2fdfaae7db2dfc82c1600de2818c86b1be42bab42682aa27c37fd853a97e3316ac71081075994b3fa29a52c6f94cc29445dc2e5248d3e37ae31275f1e16f6
Static task
static1
Behavioral task
behavioral1
Sample
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132
-
Size
840KB
-
MD5
6490aefbaf3e6a708269d771d8fd4136
-
SHA1
2ae6c5f0ec0faca746bf6ba3f5c7682a454de78c
-
SHA256
c64bf1a1e4d47232d1966ec0515f7d80503a001f42b8dd3c99459f94dc0b3132
-
SHA512
6ef2fdfaae7db2dfc82c1600de2818c86b1be42bab42682aa27c37fd853a97e3316ac71081075994b3fa29a52c6f94cc29445dc2e5248d3e37ae31275f1e16f6
Score9/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Modifies file permissions
-
Drops desktop.ini file(s)
-