General
-
Target
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09.exe
-
Size
10KB
-
Sample
210519-rm35vg4nzn
-
MD5
c41d36f50230996c2c0f6b245658f930
-
SHA1
02abda2ec6cc3ea0eb8067c598079d7808df51f3
-
SHA256
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09
-
SHA512
21ba1ee1886552a240d2c2c5e842d96cada8eb518f04f42526e33bb08a939caa3f699b1d3dff80a803d6ce22d4241ffb72772c1c90c1149b5cf22a85b57eaa51
Static task
static1
Behavioral task
behavioral1
Sample
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09.exe
-
Size
10KB
-
MD5
c41d36f50230996c2c0f6b245658f930
-
SHA1
02abda2ec6cc3ea0eb8067c598079d7808df51f3
-
SHA256
68eddce0bad4515b40581f454e479a42fdd3b89e004fbba162acf339fbe46f09
-
SHA512
21ba1ee1886552a240d2c2c5e842d96cada8eb518f04f42526e33bb08a939caa3f699b1d3dff80a803d6ce22d4241ffb72772c1c90c1149b5cf22a85b57eaa51
Score8/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops startup file
-