General
-
Target
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a
-
Size
59KB
-
Sample
240610-17cd1ssfre
-
MD5
bda82dd37d7e1f833d84071b497e6ff8
-
SHA1
8004d1071b855bda212adceb7a2e6a5a7852e050
-
SHA256
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a
-
SHA512
e5bb8ea0feb50030b0676c284fd84df43f01309586e5e811ae97334f146df85fa247dc17638ba1dca391fd14c5654df109005fc00c88db5de1eab75e0b1be6c0
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsTq5q9BVI2IA:KQSohsUsWU9BK3A
Behavioral task
behavioral1
Sample
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a
-
Size
59KB
-
MD5
bda82dd37d7e1f833d84071b497e6ff8
-
SHA1
8004d1071b855bda212adceb7a2e6a5a7852e050
-
SHA256
564d5fee7753b1a35813b2e894dafcc8b2b6989a8b3505d69bb9101dee8da12a
-
SHA512
e5bb8ea0feb50030b0676c284fd84df43f01309586e5e811ae97334f146df85fa247dc17638ba1dca391fd14c5654df109005fc00c88db5de1eab75e0b1be6c0
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsTq5q9BVI2IA:KQSohsUsWU9BK3A
Score9/10-
Renames multiple (3732) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-