Extracted

• • Target

    5230f18b804d1117f09f2ec7d7b45977c154bc80bfbfbb3c1f32997a28583087

  • Size

    679KB

  • MD5

    cfe5a7469deb3aff3d6630614833afda

  • SHA1

    8d99a9c94bfced8df8f50395e990465d0721e815

  • SHA256

    5230f18b804d1117f09f2ec7d7b45977c154bc80bfbfbb3c1f32997a28583087

  • SHA512

    89fa84f2f5395d5b5a6d263140c7a118d97c8e7d11283f41148dd786f6d16bc583292cec30dbd6e8d9ef3743633fb9adde63e3624a36c9ec89281dfb7603e8ff

  Score

  10^/10

  persistenceransomware

  • Adds Run key to start application

    persistence

  • Suspicious use of SetThreadContext

  behavioral1behavioral2