General
-
Target
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56.exe
-
Size
65KB
-
Sample
210419-1q7xbq1dbn
-
MD5
bff66efddf31e2835e50c778f0c338cd
-
SHA1
0b0e24bd3b6889b10ea6f77f8ffd19b489da4e2f
-
SHA256
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56
-
SHA512
0c781af46d4a366a3768faa3fa76e69a1532459a1a521d1048e485ef079c03716214c0c13abab1b2b67504ade3fd2316cdaf681f18129f98b82e92d66c32cdec
Static task
static1
Behavioral task
behavioral1
Sample
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56.exe
Resource
win10v20210408
Malware Config
Extracted
C:\$Recycle.Bin\S-1-5-21-2455352368-1077083310-2879168483-1000\HOW TO DECRYPT FILES.txt
Targets
-
-
Target
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56.exe
-
Size
65KB
-
MD5
bff66efddf31e2835e50c778f0c338cd
-
SHA1
0b0e24bd3b6889b10ea6f77f8ffd19b489da4e2f
-
SHA256
6dd4af7019dba1ff08c306fa73d3069c267c4f3d709ef7e8a5d718dbee7b7e56
-
SHA512
0c781af46d4a366a3768faa3fa76e69a1532459a1a521d1048e485ef079c03716214c0c13abab1b2b67504ade3fd2316cdaf681f18129f98b82e92d66c32cdec
Score10/10-
Drops file in Drivers directory
-
Modifies Installed Components in the registry
-
Drops startup file
-
Adds Run key to start application
-
Drops file in System32 directory
-