General
-
Target
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787
-
Size
323KB
-
Sample
220625-js8p8secf9
-
MD5
37a0a472ce93fd1bc92c6a081acbb6d8
-
SHA1
deb6224ae47da2c2ad966799214e84db01f0ee3d
-
SHA256
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787
-
SHA512
d6da7585b6cc16aab999da4eacb71857466b0c794c45ec1863530e25618dbab2b189fa955ba46d698a25b224e455a6982cb3ccd04055c6ee0a6a7d9d205f7293
Static task
static1
Behavioral task
behavioral1
Sample
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787
-
Size
323KB
-
MD5
37a0a472ce93fd1bc92c6a081acbb6d8
-
SHA1
deb6224ae47da2c2ad966799214e84db01f0ee3d
-
SHA256
abc2e1f04ec553ae837682b32ab3c970c5ba434b6ffef2666376373844948787
-
SHA512
d6da7585b6cc16aab999da4eacb71857466b0c794c45ec1863530e25618dbab2b189fa955ba46d698a25b224e455a6982cb3ccd04055c6ee0a6a7d9d205f7293
Score10/10-
Dharma
Dharma is a ransomware that uses security software installation to hide malicious activities.
-
Drops startup file
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Drops file in System32 directory
-