General
-
Target
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1
-
Size
203KB
-
Sample
240524-2phnraea74
-
MD5
68837bd5ed8ae42a18362ccf269d714e
-
SHA1
84ca01bff5f1ee429ad5caac2c038ec4cd54718c
-
SHA256
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1
-
SHA512
da6b215d42a9a1bf5bcc3fab21dc501aeb5acc4f42e4383324988fcb2d1fdae95d6a423023cb6e186365e28d7bd09af74dfe4d69a84b64bb4ab39d02ad61b9e9
-
SSDEEP
3072:enaym3AIuZAIuYSMjoqtMHfhfJ6W2QZwKS7yT1:wHm3AIuZAIuDMVtM/L2ZKS7G
Behavioral task
behavioral1
Sample
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1
-
Size
203KB
-
MD5
68837bd5ed8ae42a18362ccf269d714e
-
SHA1
84ca01bff5f1ee429ad5caac2c038ec4cd54718c
-
SHA256
6756fb1028ef9790bd6086cee9c992aefd19576f3a095243f38057e4206c04c1
-
SHA512
da6b215d42a9a1bf5bcc3fab21dc501aeb5acc4f42e4383324988fcb2d1fdae95d6a423023cb6e186365e28d7bd09af74dfe4d69a84b64bb4ab39d02ad61b9e9
-
SSDEEP
3072:enaym3AIuZAIuYSMjoqtMHfhfJ6W2QZwKS7yT1:wHm3AIuZAIuDMVtM/L2ZKS7G
Score9/10-
Renames multiple (3130) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-