Analysis
-
max time kernel
168s -
max time network
276s -
platform
windows10-1703_x64 -
resource
win10-20230915-en -
resource tags
arch:x64arch:x86image:win10-20230915-enlocale:en-usos:windows10-1703-x64system -
submitted
12/10/2023, 04:48
Static task
static1
Behavioral task
behavioral1
Sample
4696c184f85e19c86dff4288c45cee1888844eee62b8b47282b51b04c54c8d9f.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
4696c184f85e19c86dff4288c45cee1888844eee62b8b47282b51b04c54c8d9f.exe
Resource
win10-20230915-en
General
-
Target
4696c184f85e19c86dff4288c45cee1888844eee62b8b47282b51b04c54c8d9f.exe
-
Size
724KB
-
MD5
8a7e13f5bd9ce1ec7e4f2d62f179a957
-
SHA1
831e71118b0f6bad92314bbf232393c9f26069d2
-
SHA256
4696c184f85e19c86dff4288c45cee1888844eee62b8b47282b51b04c54c8d9f
-
SHA512
8d820a83d7a8448a2aa59166d1e9c77dfb58a154c6f04d0e9f538e7cdd35bca86084e9de15f1131a6565225eafdd99d8cf1b306c42ffc1347ce3b18491964dcc
-
SSDEEP
12288:36AFLRO/PA+fWKdliIGJ73V534jeABaPT9DBTt7ArtEkquhg13WVQmfjmkHfw+b:KA9RO/PU2AJ7VR/YarTRktETSQgCk/w+
Malware Config
Signatures
-
Detected Djvu ransomware 1 IoCs
resource yara_rule behavioral2/memory/2660-2-0x00000000023C0000-0x00000000024DB000-memory.dmp family_djvu -
Djvu Ransomware
Ransomware which is a variant of the STOP family.