General
-
Target
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065
-
Size
575KB
-
Sample
220306-hmbb4sbhgl
-
MD5
232a837f8b94183d3b98a32790587746
-
SHA1
cd39e16dfb4ca129acaa1d24e5c21e5b7498f220
-
SHA256
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065
-
SHA512
b5c4ca4eba5f6d91657c7ea717c2dffc7e519f98b3ad930bd21ca052795d30cb48c238821dde6171f881020e78d03a70e421436268cb4e666eabdc8b89f14a4c
Behavioral task
behavioral1
Sample
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065.exe
Resource
win7-20220223-en
Behavioral task
behavioral2
Sample
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065
-
Size
575KB
-
MD5
232a837f8b94183d3b98a32790587746
-
SHA1
cd39e16dfb4ca129acaa1d24e5c21e5b7498f220
-
SHA256
9e896c2ae1ad719ec49cb70fd174f2f94856eabadacba66150ced40561268065
-
SHA512
b5c4ca4eba5f6d91657c7ea717c2dffc7e519f98b3ad930bd21ca052795d30cb48c238821dde6171f881020e78d03a70e421436268cb4e666eabdc8b89f14a4c
Score10/10-
Dharma
Dharma is a ransomware that uses security software installation to hide malicious activities.
-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops startup file
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Drops file in System32 directory
-