General
-
Target
cb66d9ceff17133c2c323e236ffba7159f1d56ea12ca00f1a58cf748f6281cec
-
Size
128KB
-
Sample
240525-d6xbgadc73
-
MD5
16ab2dfbadfccd0e3732f10beea17664
-
SHA1
e4655b06935817470871ce1adc9c11e4d844da4d
-
SHA256
cb66d9ceff17133c2c323e236ffba7159f1d56ea12ca00f1a58cf748f6281cec
-
SHA512
403c8dd572a98628b335428cf6514b0474c9b846b55c97bc1e67b8a9032fcaafd1ee943076bedb1538652bf27bed0db3fb8dad8fb386bc3f0ffbe2be5791ff53
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJbTWn1++PJHJXA/OsIZfzc3/Q8j:+nyiQSolQSoU
Malware Config
Targets
-
-
Target
cb66d9ceff17133c2c323e236ffba7159f1d56ea12ca00f1a58cf748f6281cec
-
Size
128KB
-
MD5
16ab2dfbadfccd0e3732f10beea17664
-
SHA1
e4655b06935817470871ce1adc9c11e4d844da4d
-
SHA256
cb66d9ceff17133c2c323e236ffba7159f1d56ea12ca00f1a58cf748f6281cec
-
SHA512
403c8dd572a98628b335428cf6514b0474c9b846b55c97bc1e67b8a9032fcaafd1ee943076bedb1538652bf27bed0db3fb8dad8fb386bc3f0ffbe2be5791ff53
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJbTWn1++PJHJXA/OsIZfzc3/Q8j:+nyiQSolQSoU
Score9/10-
Renames multiple (3444) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-