General
-
Target
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7
-
Size
208KB
-
Sample
221128-b5bx2aaf2v
-
MD5
b4347012829efc382f852db233582fcd
-
SHA1
c515bfc0e2f5c92945cd4cae8f2b6434c720e344
-
SHA256
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7
-
SHA512
4d512666c99651c186be7963e1629151ee27bdd7464c23d357cc7a8f572e7dfead9fa78f3e6f14bab747ddfa3b5624079cf7694a04d7486b43bd4e3d68284366
-
SSDEEP
6144:wKhhJS1IJyE/HBXw/KWM0QZ/oQt92Y2Et5k:wKhhGIJyE/Hhwyr0+/Hk
Static task
static1
Behavioral task
behavioral1
Sample
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
C:\Program Files\7-Zip\Lang\DECRYPT_INSTRUCTION.html
Targets
-
-
Target
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7
-
Size
208KB
-
MD5
b4347012829efc382f852db233582fcd
-
SHA1
c515bfc0e2f5c92945cd4cae8f2b6434c720e344
-
SHA256
0744564f6d0b5593008da4e7e628dfd1b340c70752fc7fa8f65b5ae50841c1f7
-
SHA512
4d512666c99651c186be7963e1629151ee27bdd7464c23d357cc7a8f572e7dfead9fa78f3e6f14bab747ddfa3b5624079cf7694a04d7486b43bd4e3d68284366
-
SSDEEP
6144:wKhhJS1IJyE/HBXw/KWM0QZ/oQt92Y2Et5k:wKhhGIJyE/Hhwyr0+/Hk
Score10/10-
CryptoWall
Ransomware family which is an improved version of the older CryptoDefense.
-
Drops desktop.ini file(s)
-