General
-
Target
51e3d0af68df8209963d2cbf7cc7886be3dce16b83947ffbd5bb4028855c71f7
-
Size
115KB
-
Sample
240523-1a1ekshc78
-
MD5
b346e9dfa38b3c288247229c8b84cb57
-
SHA1
1c2aeff72801e4459fb03f4279dd3ff4e9999599
-
SHA256
51e3d0af68df8209963d2cbf7cc7886be3dce16b83947ffbd5bb4028855c71f7
-
SHA512
d8c11b65198eadc0c815e9b0507a2b002cfe25bbdec34e5534e797dfe6f8d65f7a05c2711e40de95eecfc8e9481a874fb2fe5ec9a75688f9343d8bd699cf8887
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUs18/8OTWn1++PJHJXA/OsIZfzc3/v:+nyiQSohsUsOkOQSohsUsh
Malware Config
Targets
-
-
Target
51e3d0af68df8209963d2cbf7cc7886be3dce16b83947ffbd5bb4028855c71f7
-
Size
115KB
-
MD5
b346e9dfa38b3c288247229c8b84cb57
-
SHA1
1c2aeff72801e4459fb03f4279dd3ff4e9999599
-
SHA256
51e3d0af68df8209963d2cbf7cc7886be3dce16b83947ffbd5bb4028855c71f7
-
SHA512
d8c11b65198eadc0c815e9b0507a2b002cfe25bbdec34e5534e797dfe6f8d65f7a05c2711e40de95eecfc8e9481a874fb2fe5ec9a75688f9343d8bd699cf8887
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUs18/8OTWn1++PJHJXA/OsIZfzc3/v:+nyiQSohsUsOkOQSohsUsh
Score9/10-
Renames multiple (3352) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-