Resubmissions
23-05-2024 18:29
240523-w4vnzabh2wGeneral
-
Target
0a85705c6264d2bf29b85e89b886c9c08b78c07221bcf14b7f0a3bce97d4a12f
-
Size
214KB
-
Sample
240524-svb9gsae6t
-
MD5
c164b01878448f08b1ed93dd22e67e4e
-
SHA1
699eb9ddde38aa2148c7f2661579882ad3572093
-
SHA256
0a85705c6264d2bf29b85e89b886c9c08b78c07221bcf14b7f0a3bce97d4a12f
-
SHA512
851392b2fe1d3ff56d89096413585dad721d60f30da0d14e7fb3e7daf8147d3e15dd2dd263949d4bceb06fd2ae6b7c92ea3dbf95ad9e09f515e075a259a140f6
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ3R9j3NqSGCLOwstyhZFChcssc56FUrgxvbSR:RqKvb0CYJ973e+eKZh9LNtShcHUa0
Static task
static1
Behavioral task
behavioral1
Sample
0a85705c6264d2bf29b85e89b886c9c08b78c07221bcf14b7f0a3bce97d4a12f.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
0a85705c6264d2bf29b85e89b886c9c08b78c07221bcf14b7f0a3bce97d4a12f
-
Size
214KB
-
MD5
c164b01878448f08b1ed93dd22e67e4e
-
SHA1
699eb9ddde38aa2148c7f2661579882ad3572093
-
SHA256
0a85705c6264d2bf29b85e89b886c9c08b78c07221bcf14b7f0a3bce97d4a12f
-
SHA512
851392b2fe1d3ff56d89096413585dad721d60f30da0d14e7fb3e7daf8147d3e15dd2dd263949d4bceb06fd2ae6b7c92ea3dbf95ad9e09f515e075a259a140f6
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ3R9j3NqSGCLOwstyhZFChcssc56FUrgxvbSR:RqKvb0CYJ973e+eKZh9LNtShcHUa0
Score9/10-
Renames multiple (992) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Drops file in System32 directory
-