General
-
Target
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec
-
Size
96KB
-
Sample
240610-13j83asepe
-
MD5
98945f8bd0fe19ea7aa0000adb9e9b93
-
SHA1
53dcca46b61b66d0cd253f03891591910666967c
-
SHA256
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec
-
SHA512
aad7ae0383fb6480b36f14e7fd5761fab30c0312cad35ab31f00f93d1f2f4ea2bdeb53732bdda3814581d4fec998130e9edf48bd4fb317e658cfce018649820d
-
SSDEEP
3072:9QWpze+eJfFpsJOfFpsJ2QWpze+eJfFpsJOfFpsJx:Lpe+e1pe+ec
Static task
static1
Behavioral task
behavioral1
Sample
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec
-
Size
96KB
-
MD5
98945f8bd0fe19ea7aa0000adb9e9b93
-
SHA1
53dcca46b61b66d0cd253f03891591910666967c
-
SHA256
54092f49f135223e8e2b0f4c4c3125022c4f8880b6e2bc363a047533cf48e8ec
-
SHA512
aad7ae0383fb6480b36f14e7fd5761fab30c0312cad35ab31f00f93d1f2f4ea2bdeb53732bdda3814581d4fec998130e9edf48bd4fb317e658cfce018649820d
-
SSDEEP
3072:9QWpze+eJfFpsJOfFpsJ2QWpze+eJfFpsJOfFpsJx:Lpe+e1pe+ec
Score9/10-
Renames multiple (6163) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-