Extracted

• • Target

    b7eeb0746b8e5df88c9937463db3f12a07ed3cf62ff720c6c91b8610080f2d9c.sample

  • Size

    363KB

  • MD5

    28b44669d6e7bc7ede7f5586a938b1cb

  • SHA1

    8b5afcc257edb2e585fbe5ae9174921bbe51cffd

  • SHA256

    b7eeb0746b8e5df88c9937463db3f12a07ed3cf62ff720c6c91b8610080f2d9c

  • SHA512

    131d4a2baa13e38c3351a49aa3e4630a2766d16333e35b7e6eaf004f3ba46830765af505c5334e7df35e9aaf32bcb917018ea7b6e83f787ce432fe89969f86bd

  Score

  10^/10

  dmalockerpersistenceransomware

  • DMA Locker

    Ransomware family with some advanced features, like encryption of unmapped network shares.

    ransomwaredmalocker

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Adds Run key to start application

    persistence
  behavioral1behavioral2