General
-
Target
WindowsFormsApp1.exe
-
Size
274KB
-
Sample
210506-bbhjlcsx6x
-
MD5
d6f45132d280b055495ef949513c0e70
-
SHA1
8b3f815ece356002ad950345a03e2834419b4bd8
-
SHA256
20303e928204c47140dfb767c79baf9776186fefc4ad7999ea39704939c0b928
-
SHA512
07f16ae5207da48b30a3c476d0ece5f05725824c7ca933632c76bd0893b407e95d6154ba63ac6dfb92d6e0a54ebed8a0611bf290cd6aba27411748a51ae5737f
Static task
static1
Behavioral task
behavioral1
Sample
WindowsFormsApp1.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
WindowsFormsApp1.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
WindowsFormsApp1.exe
-
Size
274KB
-
MD5
d6f45132d280b055495ef949513c0e70
-
SHA1
8b3f815ece356002ad950345a03e2834419b4bd8
-
SHA256
20303e928204c47140dfb767c79baf9776186fefc4ad7999ea39704939c0b928
-
SHA512
07f16ae5207da48b30a3c476d0ece5f05725824c7ca933632c76bd0893b407e95d6154ba63ac6dfb92d6e0a54ebed8a0611bf290cd6aba27411748a51ae5737f
Score8/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops desktop.ini file(s)
-