General
-
Target
ef45505bc1b567b7bf5f8be362727861835ee090af48fd2e05e25d524760c788
-
Size
342KB
-
Sample
240201-gfzkpaeefm
-
MD5
a222bc73e4e2ac8d05a0fcdeda3f6326
-
SHA1
9583076b1cb0ecd93fa7e67064afd479f862ee17
-
SHA256
1b95c7ec0b93c48b3a55c2c29c735a10c1275e864fb0e3e43cbbc50f02a4c33a
-
SHA512
b8f5b597cd4d53af2c2ab0765a74ab29411bc2e8ddbf6cc1d3a22f976bacfc60383a9b83c060a6e4ab421deb8270a3fc2c759408114e274855c9fff80bd85224
-
SSDEEP
6144:4x2QdiglMFGfzIBeZO8Wf2cMRkCO/xZqqDLuz+4pQoL27aR9:4AQsgScEydkCJqnuq4z2mR9
Malware Config
Targets
-
-
Target
ef45505bc1b567b7bf5f8be362727861835ee090af48fd2e05e25d524760c788
-
Size
342KB
-
MD5
a222bc73e4e2ac8d05a0fcdeda3f6326
-
SHA1
9583076b1cb0ecd93fa7e67064afd479f862ee17
-
SHA256
1b95c7ec0b93c48b3a55c2c29c735a10c1275e864fb0e3e43cbbc50f02a4c33a
-
SHA512
b8f5b597cd4d53af2c2ab0765a74ab29411bc2e8ddbf6cc1d3a22f976bacfc60383a9b83c060a6e4ab421deb8270a3fc2c759408114e274855c9fff80bd85224
-
SSDEEP
6144:4x2QdiglMFGfzIBeZO8Wf2cMRkCO/xZqqDLuz+4pQoL27aR9:4AQsgScEydkCJqnuq4z2mR9
Score9/10-
Detects command variations typically used by ransomware
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops desktop.ini file(s)
-