General
-
Target
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a.sample
-
Size
92KB
-
Sample
210726-9cervf9z5e
-
MD5
d3fca5655244e79e375d92f0b276ac0a
-
SHA1
206088a7827736cf1d58686b1afac25638ce192f
-
SHA256
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a
-
SHA512
35bd86fcddb25f78822b6585139852deacfb33b35ad0285570c1d9c10448cf6ab8a01f94803fd6531fb1bd8e92de262ecfc816573a3317f3a8674d04af2acb75
Static task
static1
Behavioral task
behavioral1
Sample
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a.sample.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a.sample.exe
Resource
win10v20210408
Malware Config
Extracted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Info.hta
Enigma1crypt@aol.com
Targets
-
-
Target
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a.sample
-
Size
92KB
-
MD5
d3fca5655244e79e375d92f0b276ac0a
-
SHA1
206088a7827736cf1d58686b1afac25638ce192f
-
SHA256
02ace2e2867208faa78003cedb058e7b494c4007dc4b4265c885702119d7e85a
-
SHA512
35bd86fcddb25f78822b6585139852deacfb33b35ad0285570c1d9c10448cf6ab8a01f94803fd6531fb1bd8e92de262ecfc816573a3317f3a8674d04af2acb75
Score10/10-
Dharma
Dharma is a ransomware that uses security software installation to hide malicious activities.
-
Drops startup file
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Drops file in System32 directory
-