Extracted

• • Target

    2.exe

  • Size

    2.4MB

  • MD5

    a1d45a1dfcf0c7b28819d2f3d9f8bd35

  • SHA1

    48b754be9094106fa3813c27e0a5e928c006f7ab

  • SHA256

    79b9e821bd34d0f1e5572eceb741caca3302cfaa4cfdf97c5ed78450355c4cbf

  • SHA512

    6c250f3530d7d246dc656fd1bbac203bb98b3fda83691bb67f95bd99d716a13fb867cebea638578fb9cb1ad482388fe0bfb80f5949b7fb9ac78d354ad72a322b

  Score

  10^/10

  ransomwarespywarestealer

  • Deletes shadow copies

    Ransomware often targets backup files to inhibit system recovery.

    ransomware

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Drops startup file

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  behavioral1behavioral2