General
-
Target
6838887bf0043e2b17f93940c3b8c4f3.exe
-
Size
59KB
-
Sample
240426-g211msaf4y
-
MD5
6838887bf0043e2b17f93940c3b8c4f3
-
SHA1
d40e49e59a110050efd9cd4aabbb119a44f55dc9
-
SHA256
70649487ae720e8d8b1f072396b054f5d9f66f2f813ba97fda1138d2286dfcdb
-
SHA512
419cb0f09f0287ae244ac0032222229f75771235ce0ffeb9ead358be63bab52f3b38051b1aaf77a3b26558bedd104e4901a28ffacc5f4f875254260925950306
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2Fnj28/8UMWMmlHlc:W7ZDpApYbWjCDOgj28/8vhm1u
Static task
static1
Behavioral task
behavioral1
Sample
6838887bf0043e2b17f93940c3b8c4f3.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6838887bf0043e2b17f93940c3b8c4f3.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
6838887bf0043e2b17f93940c3b8c4f3.exe
-
Size
59KB
-
MD5
6838887bf0043e2b17f93940c3b8c4f3
-
SHA1
d40e49e59a110050efd9cd4aabbb119a44f55dc9
-
SHA256
70649487ae720e8d8b1f072396b054f5d9f66f2f813ba97fda1138d2286dfcdb
-
SHA512
419cb0f09f0287ae244ac0032222229f75771235ce0ffeb9ead358be63bab52f3b38051b1aaf77a3b26558bedd104e4901a28ffacc5f4f875254260925950306
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2Fnj28/8UMWMmlHlc:W7ZDpApYbWjCDOgj28/8vhm1u
Score9/10-
Renames multiple (522) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-