General
-
Target
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63
-
Size
94KB
-
Sample
221203-c1l3waga83
-
MD5
bdf4b45b79f51b912c6d4bc0bddb1d05
-
SHA1
543b673e22bcb465fc6e0a957c359bd573244d71
-
SHA256
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63
-
SHA512
fdfda6bb4de2b81cd3dc9870d74adf5bab67a756dbefc5b132bf189e10db4c827cbbb3c7dd4cfaf7870aeb71fae6729ffe85cb3b8eeed1d4a82bf454b7f5d728
-
SSDEEP
1536:aPOUQrHbMsZM/ugmK82XqcTc5BkUXO6X/1qV/ZjxgHpByhbBiduD8RRYzZI05:tUQ/MsZ4B99XqcgDVvWgnZkD+yzZH5
Behavioral task
behavioral1
Sample
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63
-
Size
94KB
-
MD5
bdf4b45b79f51b912c6d4bc0bddb1d05
-
SHA1
543b673e22bcb465fc6e0a957c359bd573244d71
-
SHA256
87dcfd522eef81f58e0b18db800cdd28562ba537f1d00bb48658c21e68521a63
-
SHA512
fdfda6bb4de2b81cd3dc9870d74adf5bab67a756dbefc5b132bf189e10db4c827cbbb3c7dd4cfaf7870aeb71fae6729ffe85cb3b8eeed1d4a82bf454b7f5d728
-
SSDEEP
1536:aPOUQrHbMsZM/ugmK82XqcTc5BkUXO6X/1qV/ZjxgHpByhbBiduD8RRYzZI05:tUQ/MsZ4B99XqcgDVvWgnZkD+yzZH5
Score10/10-
Detected Xorist Ransomware
-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops startup file
-
Adds Run key to start application
-