General
-
Target
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2
-
Size
210KB
-
Sample
240525-xkqrcaeg78
-
MD5
3f813b51c26d1a3af8b6362de15e4c96
-
SHA1
91f229391b0e4e6e08cea709485d1ad449fedc5a
-
SHA256
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2
-
SHA512
a9e3963b0cc1385bf9e07b320881f5e7139a908926f8ffdc731fbce23026a6f8383ef7644ac10d8f74151c6fd6867694caed93a9a523f4b1be47bf7e376ef28d
-
SSDEEP
3072:enaym3AIuZAIuYSMjoqtMHfhfA6W2QZwKS7T:wHm3AIuZAIuDMVtM/y2ZKS7T
Behavioral task
behavioral1
Sample
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2
-
Size
210KB
-
MD5
3f813b51c26d1a3af8b6362de15e4c96
-
SHA1
91f229391b0e4e6e08cea709485d1ad449fedc5a
-
SHA256
14bfca54cf97bbd0a043e9b4c4441a194bd1fa1d711bd2639a01a74d3c1cf1d2
-
SHA512
a9e3963b0cc1385bf9e07b320881f5e7139a908926f8ffdc731fbce23026a6f8383ef7644ac10d8f74151c6fd6867694caed93a9a523f4b1be47bf7e376ef28d
-
SSDEEP
3072:enaym3AIuZAIuYSMjoqtMHfhfA6W2QZwKS7T:wHm3AIuZAIuDMVtM/y2ZKS7T
Score9/10-
Renames multiple (3134) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-