General
-
Target
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a.exe
-
Size
80KB
-
Sample
240521-x1g45sff24
-
MD5
0dc94aef173faef65c335c6154dc61a0
-
SHA1
3488b1b018937b143c6d4545d6a0fd00803626b1
-
SHA256
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a
-
SHA512
aede2a8c9ba752a2cdb33944927abbe7c91bac2595845dcabca2fa3b5ec0dc66dc5c6eded8d930351e86f0f0ce0fab002b7b27c88bbf299b2468914698575b3a
-
SSDEEP
384:GBt7Br5xjL9AgA71FbhvoBl8sO4UbXSR2sO4UbXSRj:W7BlpppARFbhx34Ubb34Ubw
Static task
static1
Behavioral task
behavioral1
Sample
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a.exe
-
Size
80KB
-
MD5
0dc94aef173faef65c335c6154dc61a0
-
SHA1
3488b1b018937b143c6d4545d6a0fd00803626b1
-
SHA256
04dc31e2d3191d41f4f2dcda8e4783c92847f931eba3b7cb02015b065b3e077a
-
SHA512
aede2a8c9ba752a2cdb33944927abbe7c91bac2595845dcabca2fa3b5ec0dc66dc5c6eded8d930351e86f0f0ce0fab002b7b27c88bbf299b2468914698575b3a
-
SSDEEP
384:GBt7Br5xjL9AgA71FbhvoBl8sO4UbXSR2sO4UbXSRj:W7BlpppARFbhx34Ubb34Ubw
Score9/10-
Renames multiple (3527) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-