General
-
Target
6363b9a47e0515c18108a39b0b434401e3798ad58d4c4ad859abb3518f19b668
-
Size
117KB
-
Sample
240526-2ca35sfc35
-
MD5
09b87184227ace9bec7a18de0c80cc26
-
SHA1
425bb169049f242ab60bb38c0a550aa0095c080f
-
SHA256
6363b9a47e0515c18108a39b0b434401e3798ad58d4c4ad859abb3518f19b668
-
SHA512
4d6d777548a00c6e9522ab9616b681721bec9cc35721d80c3c01abdd2624662d6f960a925b54dd9c2c8731964b1033375360eef9bc2ee6c8a0787bb7b548199e
-
SSDEEP
1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOMg7ZhA7pApvOsOKjC0YSilpFpfkJOMsNn:6e7WpXYvnpe7WpXYvnR
Malware Config
Targets
-
-
Target
6363b9a47e0515c18108a39b0b434401e3798ad58d4c4ad859abb3518f19b668
-
Size
117KB
-
MD5
09b87184227ace9bec7a18de0c80cc26
-
SHA1
425bb169049f242ab60bb38c0a550aa0095c080f
-
SHA256
6363b9a47e0515c18108a39b0b434401e3798ad58d4c4ad859abb3518f19b668
-
SHA512
4d6d777548a00c6e9522ab9616b681721bec9cc35721d80c3c01abdd2624662d6f960a925b54dd9c2c8731964b1033375360eef9bc2ee6c8a0787bb7b548199e
-
SSDEEP
1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOMg7ZhA7pApvOsOKjC0YSilpFpfkJOMsNn:6e7WpXYvnpe7WpXYvnR
Score9/10-
Renames multiple (4703) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-