Extracted

• • Target

    2024-06-07_ccf28af40d78acf12f05894559150e70_ryuk

  • Size

    11.9MB

  • MD5

    ccf28af40d78acf12f05894559150e70

  • SHA1

    8165f8862c491731cf1adeb9469ee5cdd7b9e650

  • SHA256

    cdf13eedd60a35d7ed8f74721e36c8f77505fc4da9ec6ae34c0f4e47f73c590d

  • SHA512

    5c5aa1e6d6540568b31b85d8c8d6d2e4ffaea8e211575a4ccdfccebae349a5ab95fce23d64aa18c14d407af83880e7f2a9cc071eb919ef42ac11fec85500e817

  • SSDEEP

    196608:ybOOqTXrTaXPA4pzxw9BK+gpvDq9onJ5hrZER5xQ3jo4U648RmU/3ZlsPvt7+sTa:HTXafVxw9BKpbq9c5hlER5xA26tN3ZWp

  Score

  10^/10

  demonwareransomware

  • DemonWare

    Ransomware first seen in mid-2020.

    ransomwaredemonware

  • Loads dropped DLL

  behavioral1behavioral2