General
-
Target
v2.exe
-
Size
170KB
-
Sample
220120-mdsbgshefn
-
MD5
6432b67fb54be5748571aba7b7cf3213
-
SHA1
6a17b61b7ed2b12ca424a88b3828a0b70855626a
-
SHA256
bc87bb72ce1ab19b2cff617a894fc1acf30bd3f9d2994235189ca8e5057fb354
-
SHA512
59646b41a47f2086ee1f47b0e3c7fb31752447364ffd7335cff2b4d09213be02d5758c15d4d86eb5109b45b112d9b3e38a64c55440039838623d552753548753
Static task
static1
Behavioral task
behavioral1
Sample
v2.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
v2.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
C:\readme.txt
conti
http://contirec7nchr45rx6ympez5rjldibnqzh7lsa56lvjvaeywhvoj3wad.onion/jehZ00C9PrzdBeD0vmBk8EYUAmCctYHBJazVJraQGUMWmkWoaDUcndRgCHzKGsz5
Targets
-
-
Target
v2.exe
-
Size
170KB
-
MD5
6432b67fb54be5748571aba7b7cf3213
-
SHA1
6a17b61b7ed2b12ca424a88b3828a0b70855626a
-
SHA256
bc87bb72ce1ab19b2cff617a894fc1acf30bd3f9d2994235189ca8e5057fb354
-
SHA512
59646b41a47f2086ee1f47b0e3c7fb31752447364ffd7335cff2b4d09213be02d5758c15d4d86eb5109b45b112d9b3e38a64c55440039838623d552753548753
Score10/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops desktop.ini file(s)
-