General
-
Target
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c
-
Size
92KB
-
Sample
240525-1ar37sbe33
-
MD5
5354944fc31dcf44fd264a7c8b0411a4
-
SHA1
84d62258e8d921438302604938f10d4a94c9455d
-
SHA256
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c
-
SHA512
ed90f858e9173238d0ce6bb899d40ec6e795f9fd16e56415957ace5f84cbe959ff55a4f60ab5f1652c86ecb14ea6ce7048c7d303098ff4051b501bee4b0e852c
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsMv2biBX45kzdI:+nyiQSohsUsI2biZ45z
Behavioral task
behavioral1
Sample
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c
-
Size
92KB
-
MD5
5354944fc31dcf44fd264a7c8b0411a4
-
SHA1
84d62258e8d921438302604938f10d4a94c9455d
-
SHA256
4d471c5b455c741f2af526ccca38da90829515207e45db18899b8a9005fb680c
-
SHA512
ed90f858e9173238d0ce6bb899d40ec6e795f9fd16e56415957ace5f84cbe959ff55a4f60ab5f1652c86ecb14ea6ce7048c7d303098ff4051b501bee4b0e852c
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsMv2biBX45kzdI:+nyiQSohsUsI2biZ45z
Score9/10-
Renames multiple (3432) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-