General
-
Target
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92
-
Size
520KB
-
Sample
240524-2qy25aeb57
-
MD5
5e0ae3eee213bcfab1afa3f48ff2210b
-
SHA1
9e84b51129cb047069607d515d3b82a7d38c6037
-
SHA256
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92
-
SHA512
2e9a6fdac403b11c9a336ae41d57e617ad2fe2fe9f48c47e0cba72090215816740b64e958b86b966f236875f3e0fe9287fd92003d985f2961d59285c3f91fb1e
-
SSDEEP
6144:JiQSo1YrIOXsqmWzJrdc6GJRQUWGUA9PRWLiFSbE56FORFO:AQt32lWRPWhA9PRWg9+
Behavioral task
behavioral1
Sample
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92
-
Size
520KB
-
MD5
5e0ae3eee213bcfab1afa3f48ff2210b
-
SHA1
9e84b51129cb047069607d515d3b82a7d38c6037
-
SHA256
67b63abe9942e362dd13509989b8de815bf2bbcaf64052debddc16bf51f41b92
-
SHA512
2e9a6fdac403b11c9a336ae41d57e617ad2fe2fe9f48c47e0cba72090215816740b64e958b86b966f236875f3e0fe9287fd92003d985f2961d59285c3f91fb1e
-
SSDEEP
6144:JiQSo1YrIOXsqmWzJrdc6GJRQUWGUA9PRWLiFSbE56FORFO:AQt32lWRPWhA9PRWg9+
Score9/10-
Renames multiple (2078) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-