Extracted

• • Target

    quickbuck.exe

  • Size

    3.0MB

  • MD5

    5764e41fede27bf9c984242c2b7bfd33

  • SHA1

    e5b4178bdebf7a59e97c56235cff472b18440359

  • SHA256

    1283836cc0ed21b535ca654611d87e766538b81b02e61289ecc94188602aaf2a

  • SHA512

    a3610ca12b1ebfd0a618fae7c0e8f655d879156a0b850c4dd8e0e8827d6719f67ad5facad7496aac3adcafbf79f0195adb5ab62d900202f07ed4ec380e516379

  Score

  10^/10

  hiveransomware

  • Hive

    A ransomware written in Golang first seen in June 2021.

    ransomwarehive

  • Deletes shadow copies

    Ransomware often targets backup files to inhibit system recovery.

    ransomware

  • Executes dropped EXE

  behavioral1