Extracted

• • Target

    61a17892a491b33ce44c7c62950bdc7a4e5e14defa0e53e41d4ebdaf2ebac04b

  • Size

    310KB

  • MD5

    bafabf22676cb0516d39a29e4b1f6bba

  • SHA1

    901d0dd5488f9d76021ea94c75c77b17e55ced4a

  • SHA256

    61a17892a491b33ce44c7c62950bdc7a4e5e14defa0e53e41d4ebdaf2ebac04b

  • SHA512

    e5f696a0d142cc201de54898557fac38778e8ce5e9969b3d8666bf8a5e8331b3bada65a6de17ce16a5a4cff533ccffbff09d5d949d3f2ae6db5bc632619d209b

  Score

  10^/10

  contidaveransomware

  • Conti Ransomware

    Ransomware generally thought to be a successor to Ryuk.

    ransomwareconti

  • Dave packer

    Detects executable using a packer named 'Dave' by the community, based on a string at the end.

    dave

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Drops desktop.ini file(s)

  behavioral1behavioral2