General
-
Target
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026
-
Size
51KB
-
Sample
240525-fhmhgafa3v
-
MD5
159c80f749a33cd22d66d34d71b1c473
-
SHA1
11005accd36c6fd2a9cfb0f979761bf5f22b9edd
-
SHA256
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026
-
SHA512
f80a7666fc3f8967bd9075c575e275a6ce6f3db07d17b07f7201f1fe1c6630f132038978a377efe76d6809bba5b5b2a009e7a3155f401a44c1fd44663f2c3c6e
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8KTcTSbyEmOTcTSbyEm6:KQSodTcTSWEmOTcTSWEm6
Behavioral task
behavioral1
Sample
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026
-
Size
51KB
-
MD5
159c80f749a33cd22d66d34d71b1c473
-
SHA1
11005accd36c6fd2a9cfb0f979761bf5f22b9edd
-
SHA256
e2844a55ccdbb2f66f04f6a560ef834f0fda2d8ac62fad517b3e544bc0607026
-
SHA512
f80a7666fc3f8967bd9075c575e275a6ce6f3db07d17b07f7201f1fe1c6630f132038978a377efe76d6809bba5b5b2a009e7a3155f401a44c1fd44663f2c3c6e
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8KTcTSbyEmOTcTSbyEm6:KQSodTcTSWEmOTcTSWEm6
Score9/10-
Renames multiple (3764) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-