Extracted

• • Target

    03597628e999d791f4cc442328024235db9a929467a62ef0a00c91a76161f0e1.bin

  • Size

    190KB

  • MD5

    f61817daf163c6617b22418bc887b9d3

  • SHA1

    e78d49cd87c37659890603bee2acca888ab381fd

  • SHA256

    03597628e999d791f4cc442328024235db9a929467a62ef0a00c91a76161f0e1

  • SHA512

    3e0cd971b6d5d3721f710a7814b320596541bcb7f021f48353a0effc24282fa241c73ce5a76ef85ebffa686f1699ccab2e8c24ad20632461cc84e2befbd74366

  Score

  10^/10

  contiransomware

  • Conti Ransomware

    Ransomware generally thought to be a successor to Ryuk.

    ransomwareconti

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Drops startup file

  • Drops desktop.ini file(s)

  behavioral1behavioral2