General
-
Target
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04
-
Size
191KB
-
Sample
240425-ca921sdb86
-
MD5
0aa8e42be65c1770d38bf7ae327f9629
-
SHA1
06e9e8b6458f4df592da23587e16acad51572d5c
-
SHA256
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04
-
SHA512
6c23f28715acd9f7dd534313c456dbef58c17b1cf9891dbc069621a9e42a263361e9f49cd31f9ca511230589a0630e75989c1cba59a376f2b4e736c5dc2a29fa
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIu/:JiQSo1EZGtKgZGtK/CAIuZAIu/
Behavioral task
behavioral1
Sample
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04
-
Size
191KB
-
MD5
0aa8e42be65c1770d38bf7ae327f9629
-
SHA1
06e9e8b6458f4df592da23587e16acad51572d5c
-
SHA256
adba313f1b1a6dc56be8bb261371ef808a26472d020f300dabac2eef32742b04
-
SHA512
6c23f28715acd9f7dd534313c456dbef58c17b1cf9891dbc069621a9e42a263361e9f49cd31f9ca511230589a0630e75989c1cba59a376f2b4e736c5dc2a29fa
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIu/:JiQSo1EZGtKgZGtK/CAIuZAIu/
Score9/10-
Renames multiple (3360) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-