General
-
Target
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0
-
Size
104KB
-
Sample
240425-bcrssace39
-
MD5
bb8894f5d32610831df383254cc9c070
-
SHA1
c5dd4c5c844ef445cc3de36e768363c2a28fc134
-
SHA256
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0
-
SHA512
414d4b6fedadd911b8b12064f09bbf304c721f653e34df14a320ac44ad67efa2d60063f0560ffb0a28e65b52db7d84bbcb7cd01f5ce55876d2b0eafe37b21a6d
-
SSDEEP
1536:W7ZDpApYbWjy0e+eq7ZDpApYbWjy0e+ed:6DWpBe+euDWpBe+ed
Static task
static1
Behavioral task
behavioral1
Sample
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0
-
Size
104KB
-
MD5
bb8894f5d32610831df383254cc9c070
-
SHA1
c5dd4c5c844ef445cc3de36e768363c2a28fc134
-
SHA256
992eb9140c6381670792964f0aa253bcce2a18c6fc46a3854297f29ad9c880b0
-
SHA512
414d4b6fedadd911b8b12064f09bbf304c721f653e34df14a320ac44ad67efa2d60063f0560ffb0a28e65b52db7d84bbcb7cd01f5ce55876d2b0eafe37b21a6d
-
SSDEEP
1536:W7ZDpApYbWjy0e+eq7ZDpApYbWjy0e+ed:6DWpBe+euDWpBe+ed
Score9/10-
Renames multiple (4813) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-