General
-
Target
green_x86.bin.zip
-
Size
92KB
-
Sample
230712-3c4wwseh69
-
MD5
93af250401992aae063712818c19b588
-
SHA1
f1dabd390931b6dac021a4171ba678f1fcb5ccf7
-
SHA256
5f36522c45a90cfef0b9bfaf12ebbf89ec9e235cab642f994e6085c2595d6dc7
-
SHA512
bd400c895122d470df98c1d4dbeb923115c738b2a02df6604c727e83b7abf14f29393ce6ac3bb087a0ea158a01884bf6558f5b44b48c4fbac3ad20326a5f62e3
-
SSDEEP
1536:kCS3iipMQE0V0OEKo6jgTrB6drnNlyM6zLFxAZumgo+cLv5NMavFzBeQiJ7Xa9i9:kCSSiWd0PEK6B6dxeFxAZumvx5Nlv9iF
Behavioral task
behavioral1
Sample
green_x86.exe
Resource
win10v2004-20230703-en
Malware Config
Extracted
C:\rAFJZeQkr.README.txt
Targets
-
-
Target
green_x86.bin
-
Size
147KB
-
MD5
30115f160eb4a2f91a649f1b7c94599d
-
SHA1
66a01eeeebf786e3562d34195074a5caf81d2c35
-
SHA256
238d05df779603163a11bbc75ad50b95f3fac0a107f1187f43756bcc94f283c5
-
SHA512
82cc647b1d853354948d4ae379c0a7e5cf981ad27b6ee7cb609c674cb1ef8a79dc078bd746e56f427f8fc7576dfbf10bff3239d36bad394971575657711eecef
-
SSDEEP
1536:XzICS4AAwczUUf8y8gvMH+1zGSNAojMP95D1xDyGAJKocBYOR5FTLu5VnH+RJJXo:oqJogYkcSNm9V7D/UKhhGPHWJZUT
Score10/10-
Renames multiple (586) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Drops desktop.ini file(s)
-