Extracted

• • Target

    17fad4b7ddf31e503ede4435c120e53515680b1852f1744afafc101496e0bc28

  • Size

    4.6MB

  • MD5

    22f8192789fbf5538b59f8b4315ff8cd

  • SHA1

    b7d528419b751bd8aef0b86e9430d49c0714453c

  • SHA256

    17fad4b7ddf31e503ede4435c120e53515680b1852f1744afafc101496e0bc28

  • SHA512

    f451dcf0b05f7af9a1fc54a447083e627ad8c79da6eeff7d761efda7f605efb962bf05bf400cc054bd5cac1902d6e22e5cad8476347e52153a760bb3ec71be00

  Score

  10^/10

  ransomwarespywarestealer

  • Deletes shadow copies

    Ransomware often targets backup files to inhibit system recovery.

    ransomware

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Drops startup file

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  behavioral1behavioral2