General
-
Target
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd
-
Size
97KB
-
Sample
240525-gywazsha3s
-
MD5
2bc531a3f81217bd96860e8e54e89fe4
-
SHA1
adbee703bbde51289e81805b9c80cafba17f4743
-
SHA256
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd
-
SHA512
35688a0a170979f5a2bc251d020dccd02be1157db19c7a4c1f91b44446c77169950e5dd78b29152f89ac04efdd5b49beeba731084b59250b454fe744fced99fc
-
SSDEEP
1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfa:hfAIuZAIuYSMjoqtMHfhfa
Behavioral task
behavioral1
Sample
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd
-
Size
97KB
-
MD5
2bc531a3f81217bd96860e8e54e89fe4
-
SHA1
adbee703bbde51289e81805b9c80cafba17f4743
-
SHA256
fa8de58d621af97295e74441dd3467cb551773d24a49dcd0c9a069f5bb3e7cbd
-
SHA512
35688a0a170979f5a2bc251d020dccd02be1157db19c7a4c1f91b44446c77169950e5dd78b29152f89ac04efdd5b49beeba731084b59250b454fe744fced99fc
-
SSDEEP
1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfa:hfAIuZAIuYSMjoqtMHfhfa
Score9/10-
Renames multiple (3442) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-