Extracted

• • Target

    9a55f55886285eef7ffabdd55c0232d1458175b1d868c03d3e304ce7d98980bc.exe

  • Size

    542KB

  • MD5

    c115bbbdb1a61f8c553d74802bfd78fb

  • SHA1

    1f439569e3c1c14ea9f02235f8f45c49e2764160

  • SHA256

    9a55f55886285eef7ffabdd55c0232d1458175b1d868c03d3e304ce7d98980bc

  • SHA512

    6ad701415ce5e1f94144a979f7e347499ecd80e4de4705dbe9570ad53a90b58034ea98f2ec9d257a330ec47ffeacdbd420f581ad8a4d76b0c7ad4bb198b1ab84

  • SSDEEP

    12288:trkm8R9qXgmj3d7khtgfpedbKbiTuDZWhswtik5j2w+f:2Ujt7+twpedbKb1dWhse9K

  Score

  10^/10

  blackbastaransomware

  • Black Basta

    A ransomware family targeting Windows and Linux ESXi first seen in February 2022.

    ransomwareblackbasta

  • Deletes shadow copies

    Ransomware often targets backup files to inhibit system recovery.

    ransomware

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Sets desktop wallpaper using registry

    ransomware
  behavioral1behavioral2