General
-
Target
RansomWare.exe
-
Size
158KB
-
Sample
211022-hkjkpscban
-
MD5
d3c355a11849cbd0d4f3937a79c81c96
-
SHA1
bdc7567d33da81654395d8fefc7500d124d87a31
-
SHA256
8b0d359eb8167b044bf25b943820a3b71e94bc3f0c26d9ba295dee1df014a7c0
-
SHA512
a9091d36341135e74ba7918bc1f1f3960d8d1e049361ccea700662311bdbaa6e8c23a224ca0d640c596d5f8b269839e50104de5e5f96fcfe57ef8523d8a0ce7d
Static task
static1
Behavioral task
behavioral1
Sample
RansomWare.exe
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
RansomWare.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
RansomWare.exe
-
Size
158KB
-
MD5
d3c355a11849cbd0d4f3937a79c81c96
-
SHA1
bdc7567d33da81654395d8fefc7500d124d87a31
-
SHA256
8b0d359eb8167b044bf25b943820a3b71e94bc3f0c26d9ba295dee1df014a7c0
-
SHA512
a9091d36341135e74ba7918bc1f1f3960d8d1e049361ccea700662311bdbaa6e8c23a224ca0d640c596d5f8b269839e50104de5e5f96fcfe57ef8523d8a0ce7d
Score8/10-
Disables Task Manager via registry modification
-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops desktop.ini file(s)
-