General
-
Target
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6
-
Size
45KB
-
Sample
240526-cyzwyscd53
-
MD5
1de88bc39afa8b62ec18aa69f70307a7
-
SHA1
2b4f0b1fe8912a10d9d21d8ea3f55a4294bcf9bd
-
SHA256
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6
-
SHA512
910546370f0e77f261d431af9f389686497de4e5df9e339dc5e1cae1fe8e2dd97c93f45df84e2fbdd29d0af34d67a38b9737d683c8860bec898a90bfe38f10b9
-
SSDEEP
768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzf:CTWn1++PJHJXA/OsIZfzc3/Q8zxF
Behavioral task
behavioral1
Sample
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6
-
Size
45KB
-
MD5
1de88bc39afa8b62ec18aa69f70307a7
-
SHA1
2b4f0b1fe8912a10d9d21d8ea3f55a4294bcf9bd
-
SHA256
bf53f923fca56e736dbfa88e1a691e1ba8ea872663948b4e253c89dd375a66a6
-
SHA512
910546370f0e77f261d431af9f389686497de4e5df9e339dc5e1cae1fe8e2dd97c93f45df84e2fbdd29d0af34d67a38b9737d683c8860bec898a90bfe38f10b9
-
SSDEEP
768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzf:CTWn1++PJHJXA/OsIZfzc3/Q8zxF
Score9/10-
Renames multiple (935) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-