General
-
Target
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0
-
Size
56KB
-
Sample
240515-153hesef9s
-
MD5
0c8fce692678e5d357cc8cec80d906a3
-
SHA1
617f7e38c69baebaa21accf6e076eab5664d9e10
-
SHA256
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0
-
SHA512
1da35ac0c39b73638bcdac44ab4cc84696c364f80577bd0362d599cfd957762011f203d6a1592c3ffb494ed6cf978335675269ec5f97cb16504bd6cac90421cc
-
SSDEEP
768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufG7:67Zf/FAxTWY1++PJHJXA/OsIZh
Behavioral task
behavioral1
Sample
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0
-
Size
56KB
-
MD5
0c8fce692678e5d357cc8cec80d906a3
-
SHA1
617f7e38c69baebaa21accf6e076eab5664d9e10
-
SHA256
56b8d7edb6e8514baf119dddeb24ae77538877403d0a080835d569c3e243a7a0
-
SHA512
1da35ac0c39b73638bcdac44ab4cc84696c364f80577bd0362d599cfd957762011f203d6a1592c3ffb494ed6cf978335675269ec5f97cb16504bd6cac90421cc
-
SSDEEP
768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufG7:67Zf/FAxTWY1++PJHJXA/OsIZh
Score9/10-
Renames multiple (3610) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-