General
-
Target
46d340eaf6b78207e24b6011422f1a5b4a566e493d72365c6a1cace11c36b28b.exe
-
Size
2.0MB
-
Sample
220930-jx6fnsdggr
-
MD5
36171704cde087f839b10c2465d864e1
-
SHA1
e3baa1c3ee9aa1d5ae61187be2e20ea9cb57d538
-
SHA256
46d340eaf6b78207e24b6011422f1a5b4a566e493d72365c6a1cace11c36b28b
-
SHA512
9d13d5aa950a16a36123585917533238cde146ef67d2af23f23dc83aea5764dc90f3533a74747b80f3c113c9895a6e3ac1c6f4801ae2df6d6f9ec5f8b2bc31ae
-
SSDEEP
49152:SddZjtDrb/TyvO90dL3BmAFd4A64nsfJ7j7TPtGcddRgLj2Dau/oZzQFz1j:Sdfj7zyg5oo
Malware Config
Targets
-
-
Target
46d340eaf6b78207e24b6011422f1a5b4a566e493d72365c6a1cace11c36b28b.exe
-
Size
2.0MB
-
MD5
36171704cde087f839b10c2465d864e1
-
SHA1
e3baa1c3ee9aa1d5ae61187be2e20ea9cb57d538
-
SHA256
46d340eaf6b78207e24b6011422f1a5b4a566e493d72365c6a1cace11c36b28b
-
SHA512
9d13d5aa950a16a36123585917533238cde146ef67d2af23f23dc83aea5764dc90f3533a74747b80f3c113c9895a6e3ac1c6f4801ae2df6d6f9ec5f8b2bc31ae
-
SSDEEP
49152:SddZjtDrb/TyvO90dL3BmAFd4A64nsfJ7j7TPtGcddRgLj2Dau/oZzQFz1j:Sdfj7zyg5oo
Score8/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Deletes itself
-
Drops startup file
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-