sodinokibi | Win_Ransomware_Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492_exe_PID1e4c_Win[.]Ransomware[.]Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492[.]exe_400000_x86[.]exe

General

Target

Win_Ransomware_Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492_exe_PID1e4c_Win.Ransomware.Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492.exe_400000_x86.exe
Size

136KB
MD5

9d49c2ec0013b1cc479f483d8f3b6339
SHA1

ae4b1c1376714ca0f82e22d0a35205382c742194
SHA256

772362849f1575cb23ea05f5e6a5839d8730a8c14250e67ba78d04e274ed5b0f
SHA512

c2cd3ebf9d66239db6fe15f8c1009d4866700a5f7d0277c785bd4abb3af1fdc263726f1dc98eea0232e8166b6afea1b7a903082f337987af0bc6a0be3474bf2e
SSDEEP

1536:qxmFqbN+uJ+GayuAELVWwPALp1qSdkqICS4AVWv6taxKtf7f1:c2quxA9GrWyL

Score

10^/10

sodinokibi

Sodinokibi family
sodinokibi
Sodinokibi/Revil sample 1 IoCs

Processes:

resource yara_rule

sample family_sodinokobi

resource	yara_rule
sample	family_sodinokobi

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
Win_Ransomware_Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492_exe_PID1e4c_Win.Ransomware.Sodinokibi-7013612-0-b88951ceb296c8f01a8e13bc4efa4eb754361ee8ad3d64063d14489bc139a492.exe_400000_x86.exe