General
-
Target
6b6158f74dbd43b8c839d5ae65d33ae9a11c9e3cef5fa52d86105983a67cdc4f.bin.sample.gz
-
Size
171KB
-
Sample
210606-tel3yg45g6
-
MD5
b9b9f8f5d75ce30c52a0929b3cb1f436
-
SHA1
604d1eea1d9b915b8f2fd0d2c797542d24b386c7
-
SHA256
ace36c6b14274d0ce656640277454f1ce3ce079bcbf0608bcf6070fb02cd9fc8
-
SHA512
de9ce4e530966c09f519bdd7c3f9742fcadb7d1666368eceefc7ba24ffa4aa7438811acee2def4d721ea9a6ed0c421600f9ee2b1397625df5ffd1e2a1d440848
Static task
static1
Behavioral task
behavioral1
Sample
sample.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
sample.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
sample
-
Size
171KB
-
MD5
d3d0035a769e6ef98b1433160b2c8333
-
SHA1
be1d0aed32308166721d4756e2216dc44c2d0baa
-
SHA256
6b6158f74dbd43b8c839d5ae65d33ae9a11c9e3cef5fa52d86105983a67cdc4f
-
SHA512
b86b1ab9ad2c4c851c8712d0e49321cd3f9671815592bd4228664d236093cbb904f091dc7ad60815a56da5f9face2ce11fbd84790afca4d480ae17fa76dcb229
Score8/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops desktop.ini file(s)
-