General
-
Target
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb
-
Size
157KB
-
Sample
240525-gk27dage2s
-
MD5
60ddb02783fb28c092102ded523ef8a1
-
SHA1
e82335aa9ddfe90ddc93fdd91e784c6d08ed91a1
-
SHA256
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb
-
SHA512
aa1bb2bb68d55da5578dda793a75aa246c7a16cc7e57a88fb74e41a3b6ca8c8168e513e3b9fdb8eccbda3cb42c8a089251501b43192dd897b6c5f3248b9aac85
-
SSDEEP
1536:W7ZDpApYbWj2WTWJe+e/qX+7ZDpApYbWj2WTWJe+e/qXZ1Bl:6DWpaWTWJe+elDWpaWTWJe+ekl
Static task
static1
Behavioral task
behavioral1
Sample
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb
-
Size
157KB
-
MD5
60ddb02783fb28c092102ded523ef8a1
-
SHA1
e82335aa9ddfe90ddc93fdd91e784c6d08ed91a1
-
SHA256
f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb
-
SHA512
aa1bb2bb68d55da5578dda793a75aa246c7a16cc7e57a88fb74e41a3b6ca8c8168e513e3b9fdb8eccbda3cb42c8a089251501b43192dd897b6c5f3248b9aac85
-
SSDEEP
1536:W7ZDpApYbWj2WTWJe+e/qX+7ZDpApYbWj2WTWJe+e/qXZ1Bl:6DWpaWTWJe+elDWpaWTWJe+ekl
Score9/10-
Renames multiple (841) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-