General
-
Target
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c
-
Size
2.5MB
-
Sample
240610-2bjc5ashnd
-
MD5
95b962f05e459d739fc85deb4853c746
-
SHA1
bf8e466a33afee2ba10c22b5c02fbd0d19bc87ec
-
SHA256
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c
-
SHA512
5d09d0db903768935fd66e46857ac61da99f68ddf8449ed55d3135fc21a7a6028887015745b8655aa7811bbf08dccaef5779a7dde69ca0ecc4ce0dfac6e2fb8f
-
SSDEEP
49152:V6cWKleSzSlbPlUPlahnkGHDZrG3uhfZqxe:UcjleSzSlbPlUPlahnkGjZrwoP
Behavioral task
behavioral1
Sample
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c
-
Size
2.5MB
-
MD5
95b962f05e459d739fc85deb4853c746
-
SHA1
bf8e466a33afee2ba10c22b5c02fbd0d19bc87ec
-
SHA256
5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c
-
SHA512
5d09d0db903768935fd66e46857ac61da99f68ddf8449ed55d3135fc21a7a6028887015745b8655aa7811bbf08dccaef5779a7dde69ca0ecc4ce0dfac6e2fb8f
-
SSDEEP
49152:V6cWKleSzSlbPlUPlahnkGHDZrG3uhfZqxe:UcjleSzSlbPlUPlahnkGjZrwoP
Score9/10-
Renames multiple (226) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-