General
-
Target
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc
-
Size
70KB
-
Sample
240525-b88q6sad6v
-
MD5
2f8c0d05ce9f47d6ab1fc36a9c47097b
-
SHA1
08cc620095523a86a063e39259260279a2b17958
-
SHA256
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc
-
SHA512
4ef7bd03dcfe51b1c6b33459278bda1ae167c54875a77d0b448ee95374a8233d84f1dc06c4ca40fbde15ba9dd4977cf51541c8a6c0420c055d5be239b565b270
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUs18/8E:+nyiQSohsUsOkE
Behavioral task
behavioral1
Sample
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc
-
Size
70KB
-
MD5
2f8c0d05ce9f47d6ab1fc36a9c47097b
-
SHA1
08cc620095523a86a063e39259260279a2b17958
-
SHA256
a8626e3d6a692f5888fad9c917d96af6814fac73305b4e665051985ec0acecdc
-
SHA512
4ef7bd03dcfe51b1c6b33459278bda1ae167c54875a77d0b448ee95374a8233d84f1dc06c4ca40fbde15ba9dd4977cf51541c8a6c0420c055d5be239b565b270
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUs18/8E:+nyiQSohsUsOkE
Score9/10-
Renames multiple (3445) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-