General
-
Target
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4
-
Size
74KB
-
Sample
240525-e4hkzaee96
-
MD5
3b88d2bce1f59857232b25db9db48f20
-
SHA1
f494e35232a7ba9a926d6b44e05730a5e810c8b2
-
SHA256
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4
-
SHA512
6c1465e54447156c11e88ae604d6e6466932e3fe98c9a66777c93c12cb83b3e8c618059ae7e967c60c6b7e1067976be835d0ec4baf37ba5eed168fb5e369fac2
-
SSDEEP
768:W7Blp9pARFbhQSox/6Sox/ME4JAIAepE4JAIAeuDlmlQPc3f6Pc3f5TGotuMOiJf:W7Z9pApQESOHepOHe8G+6E65TGA3v3
Static task
static1
Behavioral task
behavioral1
Sample
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4
-
Size
74KB
-
MD5
3b88d2bce1f59857232b25db9db48f20
-
SHA1
f494e35232a7ba9a926d6b44e05730a5e810c8b2
-
SHA256
db5225b44a4bf7d28e65ba4aabc41ed6c22a5f5ca64f3f084a64d421af673de4
-
SHA512
6c1465e54447156c11e88ae604d6e6466932e3fe98c9a66777c93c12cb83b3e8c618059ae7e967c60c6b7e1067976be835d0ec4baf37ba5eed168fb5e369fac2
-
SSDEEP
768:W7Blp9pARFbhQSox/6Sox/ME4JAIAepE4JAIAeuDlmlQPc3f6Pc3f5TGotuMOiJf:W7Z9pApQESOHepOHe8G+6E65TGA3v3
Score9/10-
Renames multiple (3567) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-